[default-sql-dump] [medium] MySQL Dump Files found on http://127.0.0.1:31337
github-actions opened this issue · comments
github-actions commented
Details: default-sql-dump matched at http://127.0.0.1:31337
Protocol: HTTP
Full URL: http://127.0.0.1:31337/dump.sql
Timestamp: Wed Jul 7 00:11:38 +0000 UTC 2021
Template Information
Key | Value |
---|---|
tags | exposure,backup |
name | MySQL Dump Files |
author | geeknik,dwisiswant0 |
severity | medium |
Request
GET /dump.sql HTTP/1.1
Host: 127.0.0.1:31337
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36
Connection: close
Accept: */*
Accept-Language: en
Range: bytes=0-3000
Response
HTTP/1.1 206 Partial Content
Connection: close
Content-Length: 1191
Accept-Ranges: bytes
Content-Range: bytes 0-1190/1191
Content-Type: application/x-sql
Date: Wed, 07 Jul 2021 00:11:38 GMT
Etag: "4a7-5c67d5bfbe600"
Last-Modified: Wed, 07 Jul 2021 00:10:00 GMT
Server: Apache/2.4.38 (Debian)
-- MySQL dump 10.13 Distrib 5.7.26, for Linux (x86_64)
--
-- Host: localhost Database: wordpress
-- ------------------------------------------------------
-- Server version 5.7.26-0ubuntu0.18.04.1
LOCK TABLES `wp_posts` WRITE;
UPDATE `wp_posts` SET `post_content` = '<!-- wp:paragraph -->\r\n<p>Welcome to Damn Vulnerable WordPress. This is your first post. Edit or delete it, then start writing!</p>\r\n<!-- /wp:paragraph -->', `post_title` = 'Hack Me If You Can', `post_name` = 'hack-me-if-you-can' WHERE `wp_posts`.`ID` = 1;
UNLOCK TABLES;
LOCK TABLES `wp_users` WRITE;
INSERT INTO `wordpress`.`wp_users` (`ID`, `user_login`, `user_pass`, `user_nicename`, `user_email`, `user_registered`) VALUES ('2', 'editor', MD5('editor'), 'Editor', 'editor@yourdomain.com', '2020-01-01 00:00:00');
UNLOCK TABLES;
LOCK TABLES `wp_usermeta` WRITE;
INSERT INTO `wordpress`.`wp_usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES (NULL, '2', 'wp_capabilities', 'a:1:{s:6:"editor";b:1;}');
UNLOCK TABLES;
LOCK TABLES `wp_usermeta` WRITE;
INSERT INTO `wordpress`.`wp_usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES (NULL, '2', 'wp_user_level', '7');
UNLOCK TABLES;
Generated by Nuclei