|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 59
Members: 0
Total: 59
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Ipb 2.1.5 sql inj. |
|
Posted: Wed Mar 08, 2006 11:08 pm |
|
|
cluster |
Regular user |
|
|
Joined: Nov 13, 2004 |
Posts: 8 |
|
|
|
|
|
|
|
Hi all..
what about this new one? http://www.victem.com/forum/index.php?showtopic=[anytopic]&pid=1&st=-1[sql]
I try to use this string with sql command but I have the same..
mySQL query error: SELECT pid,topic_id FROM ibf_posts WHERE topic_id=18 and queued=0 ORDER BY pid asc LIMIT -1,50
SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-1,50' at line 1
SQL error code:
Now I want to know if is possible sql injection.. and how because I go crazy.. or It's only an advisory of mysql?... hiiiiii |
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|