Active Members dancezar Posted October 7, 2013 Active Members Report Share Posted October 7, 2013 (edited) Target:http://comyuycs.comli.com/sqli2.php?id=1Task:-Folositi union based sql injection-Afisati nickul vostru impreuna cu versiunea-Nu dati alte hinturi pastrati solutia pentru voiProof:http://s9.postimg.org/y8j0cp5wf/sqli_me.pngHint:VkZjeFNrMVZOVVZhZWxKYVlXdFZlbFJzVWtKT1JuQjBWMVJHWVZaRlZUQlhWbEpEWVVVMGVWTlVSazVTUmxWM1YyeFNRazFzY0hGWFZEQTk=Solvers:-Bitmap-askwrite-Bit-ul-wHoIS Edited February 14, 2014 by danyweb09 Quote Link to comment Share on other sites More sharing options...
EncodedCoi Posted October 7, 2013 Report Share Posted October 7, 2013 Easy level, thanks for challenge, next challenge. Quote Link to comment Share on other sites More sharing options...
Active Members dancezar Posted October 7, 2013 Author Active Members Report Share Posted October 7, 2013 Easy level, thanks for challenge, next challenge.ok friend send me the syntax and i post you on solvers list.Next challenge for you? First this https://rstforums.com/forum/75984-easy-sql-injection-challenge.rst and then?.....this https://rstforums.com/forum/76012-hard-sql-injection.rst if you want https://rstforums.com/forum/75620-sqli-challenge.rst try this alsow https://rstforums.com/forum/75528-sqli-challenge.rst good luck Quote Link to comment Share on other sites More sharing options...
EncodedCoi Posted October 7, 2013 Report Share Posted October 7, 2013 ok friend send me the syntax and i post you on solvers list.Next challenge for you? First this https://rstforums.com/forum/75984-easy-sql-injection-challenge.rst and then?.....this https://rstforums.com/forum/76012-hard-sql-injection.rst if you want https://rstforums.com/forum/75620-sqli-challenge.rst try this alsow https://rstforums.com/forum/75528-sqli-challenge.rst good luckAll easy levels. Thanks for the challenges.I'm waiting for the next challenges. Quote Link to comment Share on other sites More sharing options...
BitMap Posted October 16, 2013 Report Share Posted October 16, 2013 Foarte, foarte bine gandit challenge-ul Nu pot sa trimit PM cu sintaxa, dar pana la urma nu acel 'Hall of Fame' conteaza asa de mult, ci, challenge-ul in sine, ceea ce am invatat rezolvand-ul, cel care l-a creat sau a vrut sa il faca public.Si indiferent ce s-a intamplat eu sper sa ne mai auzim pe forum. Quote Link to comment Share on other sites More sharing options...
Bit-ul Posted February 14, 2014 Report Share Posted February 14, 2014 poza: Quote Link to comment Share on other sites More sharing options...
wHoIS Posted February 14, 2014 Report Share Posted February 14, 2014 Quote Link to comment Share on other sites More sharing options...
Active Members dancezar Posted February 14, 2014 Author Active Members Report Share Posted February 14, 2014 (edited) Bravo baieti maine am sa inchid challenge-ul si am sa postez si secretul:))Poate mai rezolva cineva pana maineEdit:Challenge ClosedFelicitari tuturor participantilor-Bitmap-askwrite-Bit-ul-wHoIS Solutia a fost foarte simpla si se afla in HINT si anume source code.Daca puneati dupa id=1 order by 1+--+ si va uitati in sursa veti obtine o eroarea ca asta "ion for the right syntax to use near 'yb redro 1' at line 1-" . "yb redro 1" este inversat cea ce inseamna ca orice introduceti dupa id v-a fi rasturnat daca bagati dupa id "mere" in sursa v-a aparea eroarea si va v-a spune "erem".Cum facem sa inversam acest proces? foarte simplu daca noi vom introduce deja un cuvant invers citit de la dreapta la stanga functia strrev din php v-a inversa acest cuvant si il v-a aduce la forma lui normala.Cu astea fiind spune pentru a numera coloanele folosim:http://comyuycs.comli.com/sqli2.php?id=1%20yb%20redro%201 dupa ce functia v-a inversa cuvantul vom obtine order by 1 iar daca schimbam id=4 yb redro 1 vom obtine eroarea Unknown column '4' deci is 3 coloane.Apoi facem union pe 3 coloane in felul umator http://comyuycs.comli.com/sqli2.php?id=3,2,1%20tceles%20noinu%200 si vom obtine coloana vurnerabila 2.Si vom folosi acelasi procedeu pentru a scoate versiunea http://comyuycs.comli.com/sqli2.php?id=3,noisrev@@,1%20tceles%20noinu%200 Edited February 15, 2014 by danyweb09 Quote Link to comment Share on other sites More sharing options...
