tamerzzab Posted January 2, 2012 Report Posted January 2, 2012 (edited) e vorba de Greenberg Quinlan Rosner | HomeTarget: http://www.greenbergresearch.com/index.php?ID=403Host IP: 72.3.232.37Web Server: Apache/2.0.46 (Red Hat)Powered-by: PHP/4.3.2DB Server: MySQL >=4.1Current DB: greenbergdevDBbaza de date : greenbergdevDBTabele : users ( singuru gasit )Admin : webadmin , admin@gqrr.comNu gasesc parolele nici cum , out of ideeaany help ?edit: link login http://www.greenbergresearch.com/admin/ Edited January 2, 2012 by tamerzzab Quote
xpaulx Posted January 2, 2012 Report Posted January 2, 2012 Poate ca nu exista parole. Te-ai gandit la posibilitatea asta? Quote
Slice228 Posted January 2, 2012 Report Posted January 2, 2012 (edited) Poate ca nu exista parole. Te-ai gandit la posibilitatea asta?Exact.Asa am patit-o si eu de multe ori./ / Ai incercat SQL Injection? Use havij daca nu stii sql injection sau invata un tutorial. Edited January 2, 2012 by Slice228 Quote
tamerzzab Posted January 2, 2012 Author Report Posted January 2, 2012 (edited) pai daca nu ar exista parola atunci, cum m-as putea loga aici ? Logincu sql poizon + havij , am facut Edited January 2, 2012 by tamerzzab Quote
xpaulx Posted January 2, 2012 Report Posted January 2, 2012 Nu e necesar ca parola sa fie in acelasi db, sau sa fie stocata intr-un db. Poate au datele de logare hardcoded in script, desi ma cam indoiesc in cazul de fata. Exista n mii de variante. Quote
shaggi Posted January 2, 2012 Report Posted January 2, 2012 Pai daca ai facut cu havij si ti-a dat faza cu illegal inseamna ca merge doar manual:)) Quote
pr00f Posted January 2, 2012 Report Posted January 2, 2012 Database: greenbergdevDB[5 tables]+------------+| article || media || permission || roles || users |+------------+Database: greenbergdevDBTable: users[11 columns]+-------------+-------------+| Column | Type |+-------------+-------------+| description | numeric || email | numeric || filename | numeric || first_name | numeric || id | numeric || keywords | numeric || last_name | numeric || locked | non-numeric || published | numeric || templateid | numeric || username | numeric |+-------------+-------------+Dac? vrei, revin cu dump-ul columnelor. Quote
tamerzzab Posted January 2, 2012 Author Report Posted January 2, 2012 da , te rog , banuiesc ca parolele is criptate si se afla in locked ? Quote
pr00f Posted January 2, 2012 Report Posted January 2, 2012 Database: greenbergdevDBTable: users[24 entries]+---------------+-----------------------------+--------------------+------------+----+----------+-----------+--------+-----------+------------+-------------+| description | email | filename | first_name | id | keywords | last_name | locked | published | templateid | username |+---------------+-----------------------------+--------------------+------------+----+----------+-----------+--------+-----------+------------+-------------+| Basic Article | skirovski@hotmail.com | template01.inc.php | sasha | 27 | NULL | kirovski | NULL | 1 | 1 | Arand || Basic Article | bfowks@hugeinc.com | template01.inc.php | Billy | 28 | NULL | Fowks | NULL | 1 | 1 | bfowks || Basic Article | skirovski@hotmail.com | template01.inc.php | sasha | 34 | NULL | sasha | NULL | 1 | 1 | billyfowks || Basic Article | sau@hugeinc.com | template01.inc.php | Shirley | 38 | NULL | Au | NULL | 1 | 1 | bkrauss || Basic Article | scolak@hugeinc.com | template01.inc.php | serkan | 39 | NULL | colak | NULL | 1 | 1 | ckim || Basic Article | billy@hugeinc.com | template01.inc.php | billy | 40 | NULL | fowks | NULL | 1 | 1 | crichardson || Basic Article | ckim@hugeinc.com | template01.inc.php | Chris | 42 | NULL | Kim | NULL | 1 | 1 | dlieberman || Basic Article | admin@gqrr.com | template01.inc.php | admin | 43 | NULL | admin | NULL | 1 | 1 | drooney || Basic Article | krivera@gqrr.com | template01.inc.php | Kathy | 44 | NULL | Rivera | NULL | 1 | 1 | eseifert || Basic Article | kwitt@gqrr.com | template01.inc.php | Karen | 45 | NULL | Witt | NULL | 1 | 1 | esenn || Basic Article | gwolfe@hugeinc.com | template01.inc.php | Galen | 46 | NULL | Wolfe | NULL | 1 | 1 | gqrresearch || Basic Article | sweston@gqrr.com | template01.inc.php | Sam | 47 | NULL | Weston | NULL | 1 | 1 | gwolfe || Basic Article | esenn@gqrr.com | template01.inc.php | Eric | 48 | NULL | Senn | NULL | 1 | 1 | jlacayo || Basic Article | msaran@hugeinc.com | template01.inc.php | monique | 49 | NULL | saran | NULL | 1 | 1 | jlein || Basic Article | katew@greenbergresearch.com | template01.inc.php | Kate | 50 | NULL | Wandtke | NULL | 1 | 1 | jmacek || Basic Article | arand@hugeinc.com | template01.inc.php | Alison | 51 | NULL | Rand | NULL | 1 | 1 | katew || Basic Article | lmairl@hugeinc.com | template01.inc.php | lukas | 52 | NULL | mairl | NULL | 1 | 1 | krivera || Basic Article | pjackson@gqrr.com | template01.inc.php | Patria | 53 | NULL | Jackson | NULL | 1 | 1 | kstewart || Basic Article | wchu@gqrr.com | template01.inc.php | Warren | 54 | NULL | Chu | NULL | 1 | 1 | kwitt || Basic Article | mmurphy@gqrr.com | template01.inc.php | Molly | 55 | NULL | Murphy | NULL | 1 | 1 | LGroves || Basic Article | jlein@gqrr.com | template01.inc.php | Julie | 56 | NULL | Lein | NULL | 1 | 1 | lmairl1 || Basic Article | jlacayo@gqrr.com | template01.inc.php | Julio | 57 | NULL | Lacayo | NULL | 1 | 1 | mgroch || Basic Article | jmacek@gqrr.com | template01.inc.php | Jaclyn | 58 | NULL | Macek | NULL | 1 | 1 | MIsaacs || Basic Article | Philip | 59 | Morrow | NULL | 1 | 1 | mmurphy |+---------------+-----------------------------+--------------------+------------+----+----------+-----------+--------+-----------+------------+-------------+Nu l-am l?sat pe tot, d-asta e ultimul rând deformat. La blind, dureaz? mult. Este inutil, nu g?se?ti nimic interesant în tabela „users”. Quote
