|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 73
Members: 0
Total: 73
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
access problem |
|
Posted: Mon Apr 12, 2010 3:23 pm |
|
|
cMD |
Advanced user |
|
|
Joined: Sep 23, 2008 |
Posts: 67 |
|
|
|
|
|
|
|
Hello i have problem.
I found site vuln where is Microsoft Access
and how i dont site.asp?id=1 union select 1,password,3,4 from users
i got admin password and user name how get second user pass? p.s username i know but idont know pass |
|
|
|
|
Posted: Mon Apr 12, 2010 3:37 pm |
|
|
vince213333 |
Advanced user |
|
|
Joined: Aug 03, 2009 |
Posts: 737 |
Location: Belgium |
|
|
|
|
|
|
Try putting "limit 1,1" or "limit 2,1" behind the "from users". "limit" is an sql function which limits the retrieved data.
syntax: limit #offset,#amount
Hope this helps |
|
|
|
|
Posted: Mon Apr 12, 2010 4:19 pm |
|
|
cMD |
Advanced user |
|
|
Joined: Sep 23, 2008 |
Posts: 67 |
|
|
|
|
|
|
|
Got error!
Code: | [Microsoft][ODBC Microsoft Access Driver] Syntax error in FROM clause. |
|
|
|
|
|
Posted: Mon Apr 12, 2010 4:54 pm |
|
|
vince213333 |
Advanced user |
|
|
Joined: Aug 03, 2009 |
Posts: 737 |
Location: Belgium |
|
|
|
|
|
|
|
|
|
|
Posted: Mon Apr 12, 2010 8:17 pm |
|
|
cMD |
Advanced user |
|
|
Joined: Sep 23, 2008 |
Posts: 67 |
|
|
|
|
|
|
|
no i can't i need only help |
|
|
|
|
Posted: Sun Apr 18, 2010 5:35 pm |
|
|
cMD |
Advanced user |
|
|
Joined: Sep 23, 2008 |
Posts: 67 |
|
|
|
|
|
|
|
|
|
|
|
|
Re: access problem |
|
Posted: Sat May 08, 2010 10:38 am |
|
|
dh123 |
Regular user |
|
|
Joined: Mar 09, 2010 |
Posts: 12 |
|
|
|
|
|
|
|
cMD wrote: | Hello i have problem.
I found site vuln where is Microsoft Access
and how i dont site.asp?id=1 union select 1,password,3,4 from users
i got admin password and user name how get second user pass? p.s username i know but idont know pass |
I know, please contact me mail 10100060@qq.com |
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|