Jump to content
totti93

[REZOLVARE] SQL Injection Challenge [Unknown Level]

Recommended Posts

Posted (edited)

Si daca putem sa ne logham cu orice user fara a folosii update-ul ala, cate puncte primim?

Mor cand vad ca nu puneti limita de chr la username in register...

Edited by HrN
Posted

Daca tu imi pui limita in mysql pe coloana username de 32 de chr si nu imi verifici numarul de chr introdus in inregistrare pot sa inregistrez ceva de genul:

username:

admin                                 x

(admin urmat de cel putin 27 de space-uri si un x)

password: 123456

Cand iti verifica daca exista deja username-ul iti va da false, dar cand il va introduce in baza de date, va introduce doar primele 32 de chr.

Si poti sa te loghezi cu toate parolele, de exemplu:

http://94.249.208.142/login.php

username: admin

password: hrnhrn

sau

username: admin

password: 123123

Ambele sunt valide.

  • Upvote 1

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...