Waraxe IT Security Portal

indish3ll · Regular user

Query: SELECT NULL FROM se_classifieds LEFT JOIN se_users ON se_classifieds.classified_user_id=se_users.user_id LEFT JOIN se_classifiedvalues ON se_classifieds.classified_id=se_classifiedvalues.classifiedvalue_classified_id WHERE CASE WHEN se_classifieds.classified_user_id='0' THEN TRUE WHEN ((se_classifieds.classified_privacy & @SE_PRIVACY_REGISTERED) AND '0'<>0) THEN TRUE WHEN ((se_classifieds.classified_privacy & @SE_PRIVACY_ANONYMOUS) AND '0'=0) THEN TRUE WHEN ((se_classifieds.classified_privacy & @SE_PRIVACY_FRIEND) AND '0'<>0 AND (SELECT TRUE FROM se_friends WHERE friend_user_id1=se_classifieds.classified_user_id AND friend_user_id2='0' AND friend_status='1' LIMIT 1)) THEN TRUE WHEN ((se_classifieds.classified_privacy & @SE_PRIVACY_SUBNET) AND '0'<>0 AND (SELECT TRUE FROM se_users WHERE user_id=se_classifieds.classified_user_id AND user_subnet_id='0' LIMIT 1)) THEN TRUE WHEN ((se_classifieds.classified_privacy & @SE_PRIVACY_FRIEND2) AND '0'<>0 AND (SELECT TRUE FROM se_friends AS friends_primary LEFT JOIN se_users ON friends_primary.friend_user_id1=se_users.user_id LEFT JOIN se_friends AS friends_secondary ON friends_primary.friend_user_id2=friends_secondary.friend_user_id1 WHERE friends_primary.friend_user_id1=se_classifieds.classified_user_id AND friends_secondary.friend_user_id2='0' AND se_users.user_subnet_id='0' LIMIT 1)) THEN TRUE ELSE FALSE END AND se_classifieds.classified_classifiedcat_id=benjoe:$1$admin123$82WhhzvHQI7y1Taq83tiU1

Running sql injection am getting above error.. can any one help me to get correct syntx

don understand what am missing..

Thanks in advance..