sql injections

Chewybacca · Aug 24, 2011

Can any of you amazing people give me some help with sql injections? I understand how I check if a website is vulnerable, what i'm confused about is how to get into their admin panel, I believe I have to use commands such as order by 1, order by 2 until I get a different page, but i'm rather confused about this.

This would not be used for malicious purposes of course, once I find a vulnerability in someones site I would email the webmaster straight away.

AKIRADEATH · Aug 24, 2011

Good luck.I still don't really understand how to check if a site is vulnerable!

Hax · Aug 24, 2011

Not the right forum bro. Try hackforums.net.

I'm sure google will be able to help, too.

goku93 · Aug 24, 2011

Go to the website above..

BTW you have to order by until the page give u an error...

Chewybacca · Aug 24, 2011

Ah thank you Hax, just saw Webmasters, thought this came under it and posted here

, time to let this thread die a short painless death.

admanx · Aug 25, 2011

that's illegal!! this is a public forum and anyone can read your posts BE CAREFUL!

Codez Hybrid · Aug 26, 2011

admanx said:
that's illegal!! this is a public forum and anyone can read your posts BE CAREFUL!

sharing info is not illegal.

Chewybacca said:
Can any of you amazing people give me some help with sql injections? I understand how I check if a website is vulnerable, what i'm confused about is how to get into their admin panel, I believe I have to use commands such as order by 1, order by 2 until I get a different page, but i'm rather confused about this.

This would not be used for malicious purposes of course, once I find a vulnerability in someones site I would email the webmaster straight away.

depends on the script, if you know how to check if vuln then it shouldn't be too hard for you to use an exploit to further check. what you need is a sql injection cheat sheet

Molock · Aug 26, 2011

admanx said:
that's illegal!! this is a public forum and anyone can read your posts BE CAREFUL!

lol
what would he get charged with
conspiracy to sql inject?
No.

TheThirdOne · Aug 26, 2011

Go on hackforum & you ll get loads of easy tutorial that are step by step

Codez Hybrid · Aug 26, 2011

no point sending them to another forum...what are you some HF supporter?

Molock · Aug 26, 2011

Codez said:
no point sending them to another forum...what are you some HF supporter?

it's not likes a rivalry or anything.
there's nothing wrong with referring soemone to another place where something like that is more commonly talkeed about.

Codez Hybrid · Aug 26, 2011

botting and sql injections are the same principle

JLim · Aug 26, 2011

TheBotNet isn't a site to talk about hacking.

sql injections

Chewybacca

Member

AKIRADEATH

Veteran

Hax

Old School

goku93

Senior

Chewybacca

Member

admanx

Registered

Codez Hybrid

PHP Coder

Molock

Member

TheThirdOne

Senior

Codez Hybrid

PHP Coder

Molock

Member

Codez Hybrid

PHP Coder

JLim

That Asian Guy