Login Register






SMTPMart - Buy Inbox SMTP | Leads | Shell | cPanel 100% Bonus on 1st deposit | Instant Refunds
ProxyByte $2/GB | Residential IPv4 - No Logs - 26M+ IPs - All unblocked
REFUNDING.GG | #1 REFUND SERVICE | SAME DAY REFUNDS | WORLDWIDE ORDERS | GET ITEMS 85% OFF
The stories and information posted here are artistic works of fiction and falsehood. Only a fool would take anything posted here as fact.
Thread Rating:
  • 0 Vote(s) - 0 Average


How to find the Vul SQLi on the site filter_list
Author
Message
blackcobra Offline
Junior Member
Twelve Years of Service
Posts: 21
Threads: 5
Reputation: 0

Points: 0NSP
RE: How to find the Vul SQLi on the site 02-28-2013, 04:54 AM #9
(02-26-2013, 05:49 PM)1llusion Wrote:
(02-26-2013, 03:50 AM)blackcobra Wrote:
(02-25-2013, 10:36 PM)1llusion Wrote: There are several techniques, please read some SQL injection tutorial to actually understand what you are looking for.

I read, but the tutorial only show where u have ID not html or other extension file such chn...

Oh... euhmmm... read a bit about parameters and how they are sent to server. POST and GET methods and general stuff around.
A little introduction: http://www.w3schools.com/tags/ref_httpmethods.asp

if you have a URL of:
Code:
index.php?test=something
the ".php" is extension and "test=something" is parameter.


Which tool I can find the parameter? Burp....?

Reply





Messages In This Thread



Users browsing this thread: 1 Guest(s)