This publishing is around bonus stuff which I’ve considered ,MySQL injection , I had written a query :
/page.php?id=-1 union select table_name,2 from from information_schema.tables
where TABLE_SCHEMA='Sc0rpion'
As you see we used a single quote in query Read more…
Today my words are linked to my previous publications around MySQL injection attack , I examine the structure of URL used to attack . as known each database has exclusive language ( query ) and the developing coding language handling dynamic queries makes no difference … Read more…
I’ve been with studding nearly 6 months and the expectancy is that it would continue until next 3 months to see my concern , konkoor . by the way this rest or free time caused me to post up blog whereas I could imagine nothing to write till I found my old PHP project !
I have made decision long time ago that was to make public the Injector source Read more…
As server has only http port opened ( 80 ) , anything useful can’t be returned by your most trusted vulnerability scanner , the most known method called Injection may be using Read more…
Injector is a tool that injects user defined queries into vulnerable page and does some processes and activities , in fact it’s a utility tool which enables users to profit injection bugs considering he/she knows nothing about injection attacks structures , tricks and queries ( I suppose this is default contemplation of all utilities ) Read more…
Hi guys , let me complete the title : MySQL injection attack and comparison ways to protection PHP code against injection , each time somebody hears about Persian tutorial journal which is related to kind of Injection attacks such as MySQL , Mssql and … Read more…
