Sheyken Posted August 11, 2012 Report Posted August 11, 2012 (edited) [+]Target: http://www.bookrenotahoe.com/index.php?client[id]=34&custompkg=no&package_id=1210 [+]Document: PostGreSQL Injection[+]Method: Union based !Cerinte:---------------------------Sintaxa se trimite prin PMPostarea unui ScreenShoot este obligatoriePentru rezolvarea acestui challenge este necesar sa postati versiunea bazei de date.---------------------------Locul 1: Un script pentru creearea Symlink-urilorLocul 2: 5 nologine din diferite tari.Locul 3: Tutoriale SQL Injection de la MySQL Injection pana la MsAccess injection.---------------------------Solvers:totti93wHoIS - Script symlinksWill be edited... Edited August 11, 2012 by Sheyken Quote
Wubi Posted August 11, 2012 Report Posted August 11, 2012 (edited) Edited August 31, 2012 by Wubi Quote
Sheyken Posted August 11, 2012 Author Report Posted August 11, 2012 Wubi & wHoIS - V-am rugat sa faceti injectia in union based, sunteti turci ? Quote
wHoIS Posted August 11, 2012 Report Posted August 11, 2012 (edited) Daca se poate as vrea tutorialele... sau scriptul daca nu l'ai dat. Edited August 11, 2012 by wHoIS Quote
Sturmf Posted August 11, 2012 Report Posted August 11, 2012 Este destul de u?oar? injec?ia dac? pân? ?i un încep?tor ca mine a reu?it: Quote
Sheyken Posted August 11, 2012 Author Report Posted August 11, 2012 Daca este asa usora, astept sintaxa in pm. Quote
Sturmf Posted August 11, 2012 Report Posted August 11, 2012 (edited) Edit.Scuze. Edited August 11, 2012 by Sturmf Quote
Sheyken Posted August 11, 2012 Author Report Posted August 11, 2012 (edited) Lol, au b?gat în baza de date ?i parola în clear text ca s? nu mai stea oamenii s? sparg? hashurile:id username password nickname perm_level1 usernogo 1a1dc91c907325c69271ddf0c944bc72 super root2 Silverpeople 066a74015151f228da6275b6548d8a5d super pword yourmama root3 Silverpeople1 066a74015151f228da6275b6548d8a5d password yourmama root4 Silverpeople2 066a74015151f228da6275b6548d8a5d password yourmama root5 Silverpeople3 066a74015151f228da6275b6548d8a5d password yourmama root Ti-a spus cineva sa postezi asa ceva? De azi inainte, TU nu mai ai voie sa particip la challenge-urile mele. Edited August 11, 2012 by Sheyken Quote
Net_Spy Posted August 12, 2012 Report Posted August 12, 2012 union is easy as well just focus on some filteration n u r good to go with union.RegardsNet_Spy Quote