Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - worf2910

Pages: [1]
1
Hacking and Security / Re: SQL injection + stacked queries
« on: November 26, 2011, 09:25:33 pm »
Quote from: ande on November 26, 2011, 09:16:33 pm
How and what and where did you send? Just send a private message (http://evilzone.org/index.php?action=pm;sa=send;u=1). Or email me at ande at evilzone.org.

ok...sent...

2
Hacking and Security / Re: SQL injection + stacked queries
« on: November 26, 2011, 09:15:14 pm »
Quote from: ande on November 26, 2011, 08:21:59 pm
Havent gotten any

Uhm...maybe some troubles with evilzone mail.
How can I write you?

3
Hacking and Security / Re: SQL injection + stacked queries
« on: November 26, 2011, 08:05:39 pm »
Ok ande.
I sent you a message.

4
Hacking and Security / Re: SQL injection + stacked queries
« on: November 26, 2011, 06:47:50 pm »
Ok you are the experts. My knowledge of SQLi is no or little. The attacker used a long query with only SELECT statements to access the site. That's all. And 'a'='a etc. is old hat. It doesnt work today. What I mean about SELECT statement is that it can be used only to SEARCH or RETRIEVE records from the DB. To UPDATE or INSERT new data is impossible with PHP+MySQL. I know that cracking password in not impossible if you are a God living forever. Come on. It takes centuries to crack a 15 digits password. If you think you can crack every password I give you this one: FD20F5AB4568F36067A520B22BB8F2E038CAC8A5
Ok, go for it and good luck.

Thx for your help.

5
Hacking and Security / Re: SQL injection + stacked queries
« on: November 26, 2011, 07:26:25 am »
Thank you for the answer. For sure the attack was made using some queries with SQLmap or another SQLi tool. No files uploaded nor read. As I say it is impossible to crack a password that is for sure 15 digits or more (example: Password2IS9ThiS10). The attacker used a query with only the SELECT statement. That's really incredible. I will put on my site a test. If someone is interested to try to access the site, ok, that is the challenge! The version of the program I will put in is for sure sensible to SQLi. I've tried many ways to access the administration page without success.
Cheers
Worf

6
Hacking and Security / SQL injection + stacked queries
« on: November 26, 2011, 03:39:04 am »
Hi All.
Just a strange story :)
PHP mysql_query method does not support multiple (stacked) queries.
Then even if I can read username and password from the selected DB the problem remains cause if the password is hashed using, for instance, the MySQL PASSWORD() function is a 41 digits. Using cracker as John The Ripper or Cain and Abel and/or Rainbow tables is useful ONLY if those passwords are 7-10 digits long. If they are, for instance, 15 digits it will take centuries to decrypt them.
BUT... one of my friends has been attacked with queries using ONLY the SELECT statement. I mean, the attacker had full access to the admin page simply ovverriding the administration page! He is using PHP-MySQL. How is it possible?
Hope you can shed some more lights on this subject. Many thanks

Worf
 

7
Hacking and Security / SQL injection
« on: November 05, 2011, 08:42:28 am »
Hi!
I have the following SQL injection (Im testing it locally for my security purposes) and (argh!) it works!

index.php?lvl=categories&id=453+and%28select+1+from%28select+count%28*%29%2Cconcat%28%28select+%28select+%28select+concat%280x7e%2C0x27%2Ccount%28table_name%29%2C0x27%2C0x7e%29+from+%60information_schema%60.tables+where+table_schema%3D0x6F63696D%29%29+from+%60information_schema%60.tables+limit+0%2C1%29%2Cfloor%28rand%280%29*2%29%29x+from+%60information_schema%60.tables+group+by+x%29a%29+and+1%3D1

I can read my username and encrypted pwd BUT fortunately I cannot INSERT/UPDATE or DELETE anything and the password is  41 digits preceeded with an asterisk (one-way encrypton) Is there a way for someone to use this injection to change my credential? I mean, using in the query the SQL command INSERT etc...

Thank you for an answer
WORF

8
Hacking and Security / Re: phpmybibli (PMB) Version 3.4.8
« on: September 02, 2011, 04:59:50 am »
Yes, i've also asked this question on other hacker/security forum because I'm really worried about the vulnerability of this program. I've heard about it on several web sites. I dont know nothing about SQLi but the web sites I've visited reported a SQLi vulnerability.
Thx for the answer

9
Hacking and Security / phpmybibli (PMB) Version 3.4.8
« on: August 29, 2011, 02:29:52 pm »
Hi all.

Just a question.
Im using phpmybibli(PMB) a library system Version 3.4.8
I've read in the web that before this version the program was vulnerable to SQL injection.
Is this version still vulnerable or it is secure?

Thank a lot for an answer
Cheers
Worf2901

Pages: [1]