Jump to content
vlad1395

[m]sql

By vlad1395, in Challenges (CTF)

Recommended Posts

vlad1395 Newbie

vlad1395

Posted
Posted (edited)

Medium/Hard SQL Injection

Acum cateva zile am gasit un challenge interesant postat de dragon. Mi-a dat ceva batai de cap, dar pana la urma am reusit.

- Sintaxele nu se vor face publice, se vor trimite prin PM

- Postati aici doar un screen-shot ca dovada ca ati rezolvat (fara a se vedea rezolvarea)

Cereri: sa se extraga macar versiunea bazei de date

Link: Panasonic Product Range -

Proof:

sqlhard.png

Winners

dragon

daemien

theologu

Succes:)

Edited by vlad1395
.
denjacker Newbie

denjacker

Posted
Posted

21397079.png

[ Database Version() = 5.1.54 ]
[ Current Database = psonic_psonic ]
[ System User = psonic_newuser@localhost ]
[ User() = psonic_newuser@localhost ]
[ Hostname = iprimus.nsglobalhost.net ]
[ Port = 3306 ]
[ License = GPL ]
[ Datadir = /var/lib/mysql/ ]
[ Basedir = / ]
[ Character Sets Dir = /usr/share/mysql/charsets/ ]
[ Language = /usr/share/mysql/english/ ]
[ Log Error = /var/lib/mysql/iprimus.nsglobalhost.net.err
[ Pid File = /var/lib/mysql/iprimus.nsglobalhost.net.pid
[ tmpdir = /tmp ]
[ Automatic SP Privileages = 1 ]
[ Binlog Cache Size = 32768 ]
[ Bulk Insert Buffer Size = 8388608 ]
[ Character Set Client = latin1 ]
[ Character Set Filesystem = binary ]
[ Character Set System = utf8 ]
[ Collation Connection = latin1_swedish_ci ]
[ Connection Timeout = 10 ]
[ Date-Time format = %Y-%m-%d %H:%i:%s ]
[ Delay Key Write = ON ]
[ Delayed Insert Limit = 100 ]
[ Delayed Insert Timeout = 300 ]
[ Delayed Queue Size = 1000 ]
[ Expire Logs Days = 0 ]
[ Innodb Data File Path = ibdata1:10M:autoextend ]
[ Innodb Log Files in Group = 2 ]
[ Innodb Log Group Home Dir = ./ ]
[ Innodb Support XA = 1 ]
[ Large Files Support = 1 ]
[ LC Time Names = en_US ]
[ Local Infile = 0 ]
[ Log Wrnings = 1 ]
[ Max Allowed Packet = 16777216 ]
[ MyISAM Recover Options = OFF ]
[ MyISAM Stats Method = nulls_unequal ]
[ Old Password = 0 ]
[ PID File = /var/lib/mysql/iprimus.nsglobalhost.net.pid[=-=TEST=' for key 'group_key' ]
[ Plugin Dir = /usr/lib/mysql/plugin ]
[ Protocol Version = 10 ]
[ Secure Auth = 0 ]
[ Server ID = 1 ]
[ Slave Transaction Retries = 10 ]
[ Slow Lunch Time = 2 ]
[ Socket = /var/lib/mysql/mysql.sock ]
[ Storage Engine = MyISAM ]
[ System Time Zone = EST ]
[ TX Isolation = REPEATABLE-READ ]
[ Have ndbcluster = NO ]
[ Auto Increment Increment = 1 ]
[ Auto Increment Ofset = 1 ]
[ Back Log = 50 ]
[ Character Set Connection = latin1 ]
[ Character Set Database = latin1 ]
[ Character Set Results = latin1 ]
[ Character Set Server = latin1 ]
[ Character Set System = utf8 ]
[ Collation Database = latin1_swedish_ci ]
[ Collation Server = latin1_swedish_ci ]
[ Completion Type = 0 ]
[ Concurrent Insert = 1 ]
[ Date Format = %Y-%m-%d ]
[ Default Week Format = 0 ]
[ Div Precision Increment = 4 ]
[ Keep Files On Create = 0 ]
[ Flush = 0 ]
[ FT Boolean Syntax = + -><()~*:""&| ]
[ FT MIN Word Len = 4 ]
[ FT Query Expansion Limit = 20 ]
[ FT Stopwors File = (built-in) ]
[ Group Concat MAX Len = 1024 ]
[ Have Compress = YES ]
[ Have Crypt = YES ]
[ Have CSV = YES ]
[ Have Dynamic Loading = YES ]
[ Have Geometry = YES ]
[ Have Innodb = YES ]
[ Have OpenSSL = DISABLED ]
[ Have SSL = DISABLED ]
[ Have Query Cache = YES ]
[ Have Rtree Keys = YES ]
......
................

Check PM!

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...