Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Ever wanted to work as a "chief hacker" "security evangelist"? This is a place to post jobs or ask for work. Over time as I hear about job offers, we can consolidate them into this board. 

Current Page: 1 of 1
Results 1 - 10 of 10
7 years ago
WH
Can anybody post some links to freelance job portals for a security researcher? I have tried to search, but the results wasn't such, as I've expected.
Forum: Jobs
7 years ago
WH
http://amb.urm.lt/svedija/ambtopmenuitems.php?TopMenuID=615&SiteID=50%20or%201=1 Aha this one I've tried too, was kind a funny to me.
Forum: SQL and Code Injection
7 years ago
WH
I have tried almost everything from my cheatsheet and now reached the deadlock :/ http://se.urm.lt/ambtopmenuitems.php Just want to know if it's vulnerable.
Forum: SQL and Code Injection
7 years ago
WH
Thanks for info.
Forum: SQL and Code Injection
7 years ago
WH
Nope, when I try to do so, I get the same result again.
Forum: SQL and Code Injection
7 years ago
WH
Aha, I've understood. And what about the usernames: when I enter smth like "anyword" it shows me the "Incorrect Username" output, and when I insert the username such as: admin' or 1=1# it accepts it and asks for password. So why does it think that the username is correct?
Forum: SQL and Code Injection
7 years ago
WH
Regarding to the first I get "Incorrect Username" Regarding to the second I get the reply: --- Microsoft OLE DB Provider for ODBC Drivers error '80040e09' You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1 /indiscms/check.asp, line 15 --- That's why this situation is strange to me.
Forum: SQL and Code Injection
7 years ago
WH
Hi, I have been doing research for a while and some strange things took my attention. 1) XSS vulnerable (nothing strange:) 2) Login form: When I enter for example username as: admin, administrator, a, aaaaaa, anything else, it sends the response to me: "Incorrect Username" When I enter for example username as: admin' or 1=1# and try the same for password, I get response "
Forum: SQL and Code Injection
7 years ago
WH
I have tried and I get the same result :/ By the way I have found the search field in which <script>alert(1)</script> - works. But regarding to MySQL there is something strange.
Forum: SQL and Code Injection
7 years ago
WH
Hi, I have tried various things to make something up with my "ambtopmenuitems.php", but I always get the same result from MySQL of: Warning: Supplied argument is not a valid MySQL result resource in /data1/www/html/topemb.php on line 7 Warning: Supplied argument is not a valid MySQL result resource in /data1/www/html/mainemb.php on line 352 Warning: Supplied argument is not
Forum: SQL and Code Injection
Current Page: 1 of 1