logo
0 anonymous
Views: 1027679 Challenges: 342
Users: 12689 Online: 10

primative sites vulnerable to SQL injection – 5 Posts

  • primative sites vulnerable to SQL injection

    07/07/2006 19:34
    aceldama's Avatar aceldama 4340
    Not SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot Specified
    hi all, on my quest to try and finish the RHC1 challenge (still can't get that bloody hash<img alt="\&quot;:rage:\&quot;" src="%5C">) i've discovered a site you could play with that's vulnerable to really basic SQL injection. the link you use to access the hash and find it's original string(s) in the DB (if they have it) is <a href="%5C"><img alt="\&quot;link\&quot;" src="%5C">http://nz.md5.crysm.net/find?md5=dfb9f69b9030bad95d21f40935d72072</a>, however you can get the whole DB by entering <br><br> Edit: http://nz.md5.crysm.net/find?md5=dfb9f69b9030bad95d21f40935d72072' or ''='<br><br>hope you have fun playing around <img alt="\&quot;:wink:\&quot;" src="%5C"><br>oh, and also, please feel free to append your \"excursions\" to this post as i'm always eager to learn.
  • 07/07/2006 19:34
    sniperkid's Avatar sniperkid 5440
    Not SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot Specified
    you mean, by entering this:<br>http://nz.md5.crysm.net/find?md5=dfb9f69b9030bad95d21f40935d72072'%20or%20''='<br><br><img alt="\&quot;:P\&quot;" src="%5C"><br>
  • 07/07/2006 19:34
    aceldama's Avatar aceldama 4340
    Not SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot Specified
    shouldn't you be on holiday?<img alt="\&quot;B-)\&quot;" src="%5C"> i wrote it that way for readability only, besides, the browser fills in the gaps for you.
  • 07/07/2006 19:34
    sniperkid's Avatar sniperkid 5440
    Not SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot Specified
    yea i see, but you only need 1 ' on the end not 2 <img alt="\&quot;:P\&quot;" src="%5C"><br><br>
  • 07/07/2006 19:34
    aceldama's Avatar aceldama 4340
    Not SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot Specified
    oh crap, thanks for that. didn't even realize i made that typo...<img alt="\&quot;:wall:\&quot;" src="%5C">