DarkLegion Posted January 6, 2013 Report Posted January 6, 2013 (edited) Tinta:Zixem-lvl 8Metoda:Union BasedCerinte: aflarea versiunii, database-ului, user-ului si numele tauPM cu sintaxa, lasa o poza in threadproof: Solvers:1.Praetorian2.afumat3.Sweby4.totti93 Edited January 6, 2013 by DarkLegion Quote
Praetorian503 Posted January 6, 2013 Report Posted January 6, 2013 Nu pot afisa db si user..In fine..e hard! Quote
afumat Posted January 6, 2013 Report Posted January 6, 2013 pai... a fost prea greu frate cat m-am chinuit cu bypassuri... Quote
Sweby Posted January 6, 2013 Report Posted January 6, 2013 (edited) Trebuie sa fii atent cum sa faci bypass-ul ala. Edited January 6, 2013 by Sweby N-am vazut cerinta. Quote
totti93 Posted January 6, 2013 Report Posted January 6, 2013 (edited) Primul meu challenge de SQLi rezolvat in 2013. Am vazut ca e hard si e site facut special pentru SQL Injection. Edited January 6, 2013 by totti93 Quote
Sweby Posted January 6, 2013 Report Posted January 6, 2013 Mi se pare mie, sau majoritatea din voi ati gasit aceasta lista? (inafara de totti93 sunt sigur ca el la facut):http://zixem.altervista.org/SQLi/level1.php?id=1 aNd 1=0 UnIoN seleCt version(), - Pastebin.comhttp://zixem.altervista.org/SQLi/lvl8.php?id=(-1)union(SELselectECT(1),version(),3)Urat ce faci... Quote
DarkLegion Posted January 6, 2013 Author Report Posted January 6, 2013 Mi se pare mie, sau majoritatea din voi ati gasit aceasta lista? (inafara de totti93 sunt sigur ca el la facut):http://zixem.altervista.org/SQLi/level1.php?id=1 aNd 1=0 UnIoN seleCt version(), - Pastebin.comhttp://zixem.altervista.org/SQLi/lvl8.php?id=(-1)union(SELselectECT(1),version(),3)Majoritatea de aici au facut si alte challenge-uri, inafara de afumat... challenge inchisBravo celor care l-au rezolvat corect Quote
Sweby Posted January 6, 2013 Report Posted January 6, 2013 Nu am facut nimic urat, dar nu cred in stare cateva persoane de aici sa faca nivelul 8.Si de asta trebuie sa le futi challenge-ul altor persoane care poate vroiau sa il faca correct?...Daca nu poasteaza toti sql-uri in nasa si agentii spatiale inseamna ca nu stiu sa faca un amarat de bypass? Quote
afumat Posted January 6, 2013 Report Posted January 6, 2013 sunt eu chior sau am facut aproape toate ch. de pe pagina?dati cu piatra in astia noi... Quote