ajkaro Posted May 11, 2013 Report Posted May 11, 2013 (edited) Target:hXXp://www.lesplastiquesdelouest.com/produit.php?id=55Task:display version with your name display count how many column names start with characters id_ You should use command count() for that result. display list of columns (with their database and table name) where column names start with characters id_ use of colors is not obligatory Proof:http://www.anonmgur.com/up/2a4c605406c12ee7c60fccfd9f97165b.jpgRules:use union select based SQLi send me your command to PM post picture as proof Solvers:-challenge closedSee tutorial how to solve it:http://www.hackforums.net/showthread.php?tid=3487536or http://zentrixplus.net/forum/index.php?/topic/940-sqli-tutorial-playing-with-dump-in-one-shot-syntax-part-1/ Edited May 18, 2013 by ajkaro Quote
ajkaro Posted May 11, 2013 Author Report Posted May 11, 2013 Hi Sega,I don't see 32 items on your list. Compare your picture with mine. Also please add database name to each line in list. After doing that you will see you can't use your present command. You will have to heavy modify your command. Quote
ajkaro Posted May 18, 2013 Author Report Posted May 18, 2013 Here is tutorial how to solve that challenge:http://www.hackforums.net/showthread.php?tid=3487536orhttp://zentrixplus.net/forum/index.php?/topic/940-sqli-tutorial-playing-with-dump-in-one-shot-syntax-part-1/You will probably have to register first on these two forums to see it.ajkaro Quote
