vlad1395 Posted February 6, 2011 Report Posted February 6, 2011 (edited) Medium/Hard SQL InjectionAcum cateva zile am gasit un challenge interesant postat de dragon. Mi-a dat ceva batai de cap, dar pana la urma am reusit.- Sintaxele nu se vor face publice, se vor trimite prin PM- Postati aici doar un screen-shot ca dovada ca ati rezolvat (fara a se vedea rezolvarea)Cereri: sa se extraga macar versiunea bazei de dateLink: Panasonic Product Range -Proof:Winners dragon daemien theologu Succes:) Edited February 15, 2011 by vlad1395 . Quote
LLegoLLaS Posted February 6, 2011 Report Posted February 6, 2011 Scuze de offtopic dar ce a patit site-ul(insecurity)?nu merge de 2 zile Quote
denjacker Posted February 6, 2011 Report Posted February 6, 2011 [ Database Version() = 5.1.54 ][ Current Database = psonic_psonic ][ System User = psonic_newuser@localhost ][ User() = psonic_newuser@localhost ][ Hostname = iprimus.nsglobalhost.net ][ Port = 3306 ][ License = GPL ][ Datadir = /var/lib/mysql/ ][ Basedir = / ][ Character Sets Dir = /usr/share/mysql/charsets/ ][ Language = /usr/share/mysql/english/ ][ Log Error = /var/lib/mysql/iprimus.nsglobalhost.net.err[ Pid File = /var/lib/mysql/iprimus.nsglobalhost.net.pid[ tmpdir = /tmp ][ Automatic SP Privileages = 1 ][ Binlog Cache Size = 32768 ][ Bulk Insert Buffer Size = 8388608 ][ Character Set Client = latin1 ][ Character Set Filesystem = binary ][ Character Set System = utf8 ][ Collation Connection = latin1_swedish_ci ][ Connection Timeout = 10 ][ Date-Time format = %Y-%m-%d %H:%i:%s ][ Delay Key Write = ON ][ Delayed Insert Limit = 100 ][ Delayed Insert Timeout = 300 ][ Delayed Queue Size = 1000 ][ Expire Logs Days = 0 ][ Innodb Data File Path = ibdata1:10M:autoextend ][ Innodb Log Files in Group = 2 ][ Innodb Log Group Home Dir = ./ ][ Innodb Support XA = 1 ][ Large Files Support = 1 ][ LC Time Names = en_US ][ Local Infile = 0 ][ Log Wrnings = 1 ][ Max Allowed Packet = 16777216 ][ MyISAM Recover Options = OFF ][ MyISAM Stats Method = nulls_unequal ][ Old Password = 0 ][ PID File = /var/lib/mysql/iprimus.nsglobalhost.net.pid[=-=TEST=' for key 'group_key' ][ Plugin Dir = /usr/lib/mysql/plugin ][ Protocol Version = 10 ][ Secure Auth = 0 ][ Server ID = 1 ][ Slave Transaction Retries = 10 ][ Slow Lunch Time = 2 ][ Socket = /var/lib/mysql/mysql.sock ][ Storage Engine = MyISAM ][ System Time Zone = EST ][ TX Isolation = REPEATABLE-READ ][ Have ndbcluster = NO ][ Auto Increment Increment = 1 ][ Auto Increment Ofset = 1 ][ Back Log = 50 ][ Character Set Connection = latin1 ][ Character Set Database = latin1 ][ Character Set Results = latin1 ][ Character Set Server = latin1 ][ Character Set System = utf8 ][ Collation Database = latin1_swedish_ci ][ Collation Server = latin1_swedish_ci ][ Completion Type = 0 ][ Concurrent Insert = 1 ][ Date Format = %Y-%m-%d ][ Default Week Format = 0 ][ Div Precision Increment = 4 ][ Keep Files On Create = 0 ][ Flush = 0 ][ FT Boolean Syntax = + -><()~*:""&| ][ FT MIN Word Len = 4 ][ FT Query Expansion Limit = 20 ][ FT Stopwors File = (built-in) ][ Group Concat MAX Len = 1024 ][ Have Compress = YES ][ Have Crypt = YES ][ Have CSV = YES ][ Have Dynamic Loading = YES ][ Have Geometry = YES ][ Have Innodb = YES ][ Have OpenSSL = DISABLED ][ Have SSL = DISABLED ][ Have Query Cache = YES ][ Have Rtree Keys = YES ]......................Check PM! Quote
vlad1395 Posted February 7, 2011 Author Report Posted February 7, 2011 @cipry e down momentan@dae mien felicitari @restul haideti, chiar nimeni nu mai gaseste sintaxa ? 1 Quote