Author Topic: Shell from SQLi?? (Read 1265 times)

z3ro · « **on:** August 17, 2012, 05:25:04 pm »

Any way I could drop a shell on a server with SQLi??

NeX · « **Reply #1 on:** August 17, 2012, 09:31:24 pm »

Depends

You can use INTO FILE for MySQL and there's a little trick for mssql to run cmd commands..

ande · « **Reply #2 on:** August 18, 2012, 04:11:49 pm »

Like NeX said, yes there are ways of doing it. But from experience it almost never work. You are better of getting logins from the DB and try to upload a shell through some admin panel or something similar.

relax · « **Reply #3 on:** August 22, 2012, 01:33:44 am »

do you know the username and password to the mysql server?
if u do you could run
mysql -h [ip] -u [username] -p [password]
then in console
SELECT ('code') INTO OUTFILE "[PATH]";
or some variant of that. you can also check out
http://websec.wordpress.com/2007/11/17/mysql-into-outfile/

z3ro · « **Reply #4 on:** August 23, 2012, 05:08:04 pm »

Quote from: relax on August 22, 2012, 01:33:44 am

do you know the username and password to the mysql server?
if u do you could run
mysql -h [ip] -u [username] -p [password]
then in console
SELECT ('code') INTO OUTFILE "[PATH]";
or some variant of that. you can also check out
http://websec.wordpress.com/2007/11/17/mysql-into-outfile/

hmm... i'm gonna take a look.. Thanks

EvilZone

News:

Author Topic: Shell from SQLi?? (Read 1265 times)

z3ro

Shell from SQLi??

NeX

Re: Shell from SQLi??

ande

Re: Shell from SQLi??

relax

Re: Shell from SQLi??

z3ro

Re: Shell from SQLi??