malsploit Posted December 7, 2011 Report Posted December 7, 2011 Am dat peste o comunitate online relativ mare care are site-ul vulnerabil la sqli(cred).Daca pun un ' in query imi apare un element textarea cu: SELECT a.*, MATCH(b.pagetext) AGAINST('+\ \ \' IN BOOLEAN MODE) as score FROM post_summary AS b LEFT JOIN thread AS a ON b.threadid=a.threadid WHERE ( a.forumid=101 OR a.forumid=3 OR a.forumid=303 OR a.forumid=238 OR a.forumid=248 OR a.forumid=249 OR a.forumid=251 OR a.forumid=252 OR a.forumid=255 OR a.forumid=264 OR a.forumid=300 OR a.forumid=305 OR a.forumid=304 OR a.forumid=302 OR a.forumid=301 OR a.forumid=309 OR a.forumid=312 OR a.forumid=311 OR a.forumid=308 OR a.forumid=310 OR a.forumid=317 OR a.forumid=315 OR a.forumid=323 ) AND a.bumpdate>1291714180 AND a.visible=1 AND MATCH(b.pagetext) AGAINST('+\ \ \' IN BOOLEAN MODE) GROUP BY a.threadid ORDER BY a.bumpdate desc,a.forumid LIMIT 0, 20 am increcat sa exploatez sqli manual dar nu a mers(de fapt nu am putut).Cateva sugesti?@off Daca tot umblati la forum puneti si un searchbox in homepage Quote
totti93 Posted December 7, 2011 Report Posted December 7, 2011 Incearca:XxXxX' IN BOOLEAN MODE) UNION (SELECT ... )-- - Quote
denjacker Posted December 7, 2011 Report Posted December 7, 2011 da-mi link pe PM si incerc sa te ajut! Quote
