coba check MySqlConnection.php
disitu ada password... coba passwordnya gak usah di isi
[Tutorial] SQLi for dummies
Moderators: Paman, Xshadow, indounderground, NeOS-01
Forum rules
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya
-
Xshadow
- Posts: 482
- Joined: Thu May 31, 2007 8:01 pm
- Location: http://captureflags.com
- Contact:
Re: [Tutorial] SQLi for dummies
@noval
coba check MySqlConnection.php
disitu ada password... coba passwordnya gak usah di isi
coba check MySqlConnection.php
disitu ada password... coba passwordnya gak usah di isi
[X]perimental [S]ynthetic [H]umanoid [A]ssembled for [D]estruction and [O]nline [W]arfare
Re: [Tutorial] SQLi for dummies
hmm...
di mysqlconnection.php ga q ksh password
di mysqlconnection.php ga q ksh password
-
Xshadow
- Posts: 482
- Joined: Thu May 31, 2007 8:01 pm
- Location: http://captureflags.com
- Contact:
Re: [Tutorial] SQLi for dummies
hasilnya?noval9 wrote:hmm...
di mysqlconnection.php ga q ksh password
[X]perimental [S]ynthetic [H]umanoid [A]ssembled for [D]estruction and [O]nline [W]arfare
Re: [Tutorial] SQLi for dummies
wes tekan potomu sing dolanan leptop trus pie mas
-
Xshadow
- Posts: 482
- Joined: Thu May 31, 2007 8:01 pm
- Location: http://captureflags.com
- Contact:
Re: [Tutorial] SQLi for dummies
ya coba inject2.... :ngakak:rk12 wrote:wes tekan potomu sing dolanan leptop trus pie mas
[X]perimental [S]ynthetic [H]umanoid [A]ssembled for [D]estruction and [O]nline [W]arfare
Re: [Tutorial] SQLi for dummies
mentok mas :tapa: :tapa:
inject e gwo script apa sing pake quote (') kae
inject e gwo script apa sing pake quote (') kae
-
virtualinsanity
- Posts: 3
- Joined: Mon Feb 22, 2010 3:12 am
Re: [Tutorial] SQLi for dummies
@xshadow :
premisi, ... nanya
file nya ada yg kudu diedit dlu ga ya?
waktu di klik GO, sama kaya yg diatas penampakannya :
phpmyadmin ga di kasih password
mohon dicerahin ... thx
premisi, ... nanya
file nya ada yg kudu diedit dlu ga ya?
waktu di klik GO, sama kaya yg diatas penampakannya :
Code: Select all
hostname,$con->username,$con->password); $strSql = "SELECT events_name,events_long_description FROM `ms_events` WHERE events_id=".$_GET["id"]." AND status=1;"; $rs2=$rs->CreateResultSet($strSql,$con->databasename); while($row = $rs2->getRow()) { ?> nyuba diedit yg ini malah syntax error heheh
mohon dicerahin ... thx
When life kicks you, let it kick you forward ...
