tamerzzab Posted January 2, 2012 Report Share Posted January 2, 2012 (edited) e vorba de Greenberg Quinlan Rosner | HomeTarget: http://www.greenbergresearch.com/index.php?ID=403Host IP: 72.3.232.37Web Server: Apache/2.0.46 (Red Hat)Powered-by: PHP/4.3.2DB Server: MySQL >=4.1Current DB: greenbergdevDBbaza de date : greenbergdevDBTabele : users ( singuru gasit )Admin : webadmin , admin@gqrr.comNu gasesc parolele nici cum , out of ideeaany help ?edit: link login http://www.greenbergresearch.com/admin/ Edited January 2, 2012 by tamerzzab Quote Link to comment Share on other sites More sharing options...
xpaulx Posted January 2, 2012 Report Share Posted January 2, 2012 Poate ca nu exista parole. Te-ai gandit la posibilitatea asta? Quote Link to comment Share on other sites More sharing options...
Slice228 Posted January 2, 2012 Report Share Posted January 2, 2012 (edited) Poate ca nu exista parole. Te-ai gandit la posibilitatea asta?Exact.Asa am patit-o si eu de multe ori./ / Ai incercat SQL Injection? Use havij daca nu stii sql injection sau invata un tutorial. Edited January 2, 2012 by Slice228 Quote Link to comment Share on other sites More sharing options...
tamerzzab Posted January 2, 2012 Author Report Share Posted January 2, 2012 (edited) pai daca nu ar exista parola atunci, cum m-as putea loga aici ? Logincu sql poizon + havij , am facut Edited January 2, 2012 by tamerzzab Quote Link to comment Share on other sites More sharing options...
xpaulx Posted January 2, 2012 Report Share Posted January 2, 2012 Nu e necesar ca parola sa fie in acelasi db, sau sa fie stocata intr-un db. Poate au datele de logare hardcoded in script, desi ma cam indoiesc in cazul de fata. Exista n mii de variante. Quote Link to comment Share on other sites More sharing options...
shaggi Posted January 2, 2012 Report Share Posted January 2, 2012 Pai daca ai facut cu havij si ti-a dat faza cu illegal inseamna ca merge doar manual:)) Quote Link to comment Share on other sites More sharing options...
pr00f Posted January 2, 2012 Report Share Posted January 2, 2012 Database: greenbergdevDB[5 tables]+------------+| article || media || permission || roles || users |+------------+Database: greenbergdevDBTable: users[11 columns]+-------------+-------------+| Column | Type |+-------------+-------------+| description | numeric || email | numeric || filename | numeric || first_name | numeric || id | numeric || keywords | numeric || last_name | numeric || locked | non-numeric || published | numeric || templateid | numeric || username | numeric |+-------------+-------------+Dac? vrei, revin cu dump-ul columnelor. Quote Link to comment Share on other sites More sharing options...
tamerzzab Posted January 2, 2012 Author Report Share Posted January 2, 2012 da , te rog , banuiesc ca parolele is criptate si se afla in locked ? Quote Link to comment Share on other sites More sharing options...
pr00f Posted January 2, 2012 Report Share Posted January 2, 2012 Database: greenbergdevDBTable: users[24 entries]+---------------+-----------------------------+--------------------+------------+----+----------+-----------+--------+-----------+------------+-------------+| description | email | filename | first_name | id | keywords | last_name | locked | published | templateid | username |+---------------+-----------------------------+--------------------+------------+----+----------+-----------+--------+-----------+------------+-------------+| Basic Article | skirovski@hotmail.com | template01.inc.php | sasha | 27 | NULL | kirovski | NULL | 1 | 1 | Arand || Basic Article | bfowks@hugeinc.com | template01.inc.php | Billy | 28 | NULL | Fowks | NULL | 1 | 1 | bfowks || Basic Article | skirovski@hotmail.com | template01.inc.php | sasha | 34 | NULL | sasha | NULL | 1 | 1 | billyfowks || Basic Article | sau@hugeinc.com | template01.inc.php | Shirley | 38 | NULL | Au | NULL | 1 | 1 | bkrauss || Basic Article | scolak@hugeinc.com | template01.inc.php | serkan | 39 | NULL | colak | NULL | 1 | 1 | ckim || Basic Article | billy@hugeinc.com | template01.inc.php | billy | 40 | NULL | fowks | NULL | 1 | 1 | crichardson || Basic Article | ckim@hugeinc.com | template01.inc.php | Chris | 42 | NULL | Kim | NULL | 1 | 1 | dlieberman || Basic Article | admin@gqrr.com | template01.inc.php | admin | 43 | NULL | admin | NULL | 1 | 1 | drooney || Basic Article | krivera@gqrr.com | template01.inc.php | Kathy | 44 | NULL | Rivera | NULL | 1 | 1 | eseifert || Basic Article | kwitt@gqrr.com | template01.inc.php | Karen | 45 | NULL | Witt | NULL | 1 | 1 | esenn || Basic Article | gwolfe@hugeinc.com | template01.inc.php | Galen | 46 | NULL | Wolfe | NULL | 1 | 1 | gqrresearch || Basic Article | sweston@gqrr.com | template01.inc.php | Sam | 47 | NULL | Weston | NULL | 1 | 1 | gwolfe || Basic Article | esenn@gqrr.com | template01.inc.php | Eric | 48 | NULL | Senn | NULL | 1 | 1 | jlacayo || Basic Article | msaran@hugeinc.com | template01.inc.php | monique | 49 | NULL | saran | NULL | 1 | 1 | jlein || Basic Article | katew@greenbergresearch.com | template01.inc.php | Kate | 50 | NULL | Wandtke | NULL | 1 | 1 | jmacek || Basic Article | arand@hugeinc.com | template01.inc.php | Alison | 51 | NULL | Rand | NULL | 1 | 1 | katew || Basic Article | lmairl@hugeinc.com | template01.inc.php | lukas | 52 | NULL | mairl | NULL | 1 | 1 | krivera || Basic Article | pjackson@gqrr.com | template01.inc.php | Patria | 53 | NULL | Jackson | NULL | 1 | 1 | kstewart || Basic Article | wchu@gqrr.com | template01.inc.php | Warren | 54 | NULL | Chu | NULL | 1 | 1 | kwitt || Basic Article | mmurphy@gqrr.com | template01.inc.php | Molly | 55 | NULL | Murphy | NULL | 1 | 1 | LGroves || Basic Article | jlein@gqrr.com | template01.inc.php | Julie | 56 | NULL | Lein | NULL | 1 | 1 | lmairl1 || Basic Article | jlacayo@gqrr.com | template01.inc.php | Julio | 57 | NULL | Lacayo | NULL | 1 | 1 | mgroch || Basic Article | jmacek@gqrr.com | template01.inc.php | Jaclyn | 58 | NULL | Macek | NULL | 1 | 1 | MIsaacs || Basic Article | Philip | 59 | Morrow | NULL | 1 | 1 | mmurphy |+---------------+-----------------------------+--------------------+------------+----+----------+-----------+--------+-----------+------------+-------------+Nu l-am l?sat pe tot, d-asta e ultimul rând deformat. La blind, dureaz? mult. Este inutil, nu g?se?ti nimic interesant în tabela „users”. Quote Link to comment Share on other sites More sharing options...