Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
MySQL - any way to get in there?
Posted by: GaSmo
Date: February 09, 2009 06:53AM

I found a page with an sql injection.

It's something like select * from bla where id =

so, i found user and pass from user.mysql
but phpmyadmin isn't reachable from anyother one
than localhost. With loadfile i can read files like boot.ini
but Magicquotes is turned on, so I can't use into_outfile.

It's a winXP homePC wit WAMP - so is there anyother way to own
this machine?

Options: ReplyQuote
Re: MySQL - any way to get in there?
Posted by: backbone
Date: February 09, 2009 12:03PM

is MySQL reachable outside of localhost, or only phpMyAdmin is reachable from localhost?

---
blog [-] microblog

Options: ReplyQuote
Re: MySQL - any way to get in there?
Posted by: rvdh
Date: February 09, 2009 08:37PM

WAMP is vulnerable on SQLlite (usually unprotected) You can CSRF-SQLi someone by just sending a page to the person that contains an iframe with localhost as source, basically then you can do pretty much anything.

Just download WAMP and toy around, most often the user password combo for WAMP is:

Yep:

user: root
pass: ''

Options: ReplyQuote


Go to: Forum ListMessage ListSearchLog In
Sorry, only registered users may post in this forum.
Click here to login

Falling Rock Networks

sla.ckers.org RSS feed
Board haX0r3d together by ha.ckers.org, forshizzle. *