[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

SQL injections?

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /g/ - Technology
  3. SQL injections?
Thread replies: 11
Thread images: 1

Anonymous
SQL injections? 2015-11-23 07:44:22 Post No. 51485063
[Report] Image search: [Google]
File: Injection-image.jpg (60KB, 626x465px) Image search: [Google]
Injection-image.jpg
60KB, 626x465px
SQL injections? Anonymous 2015-11-23 07:44:22 Post No. 51485063 [Report]
Okay /g/.
Let's say, purely hypothetically ofcourse, that someone found that by turning off javascript and then entering apostrophes in a search field on a site you could produce an error message.
What would be the easiest way to exploit this, if possible at all?
>>
Anonymous 2015-11-23 07:47:21 Post No.51485080
[Report]
Anonymous 2015-11-23 07:47:21 Post No.51485080 [Report]
by downloading all of their ram and using it for things like gifs and bandwidyh aggregation. but youd have to be super leet to really pull off something like that
>>
Anonymous 2015-11-23 07:52:46 Post No.51485127
[Report]
Anonymous 2015-11-23 07:52:46 Post No.51485127 [Report]
unless the site is ancient, its backend is using a prepared query. Youre probably out od luck
>>
Anonymous 2015-11-23 07:54:17 Post No.51485139
[Report]
Anonymous 2015-11-23 07:54:17 Post No.51485139 [Report]
>>51485080
Yeah ok. Thing is, this somene really just want to edit a record in one of their databases. It's a bit risky since this database also contains social security numbers. What are the odds of doing something like this unnoticed? Could the risk be worth it and how leet are we talking here?
>>
Anonymous 2015-11-23 07:56:46 Post No.51485164
[Report]
Anonymous 2015-11-23 07:56:46 Post No.51485164 [Report]
>>51485139
I doubt they'll notice it if they're retarded enough not to sanitize inputs in 2015.
>>
Anonymous 2015-11-23 07:56:57 Post No.51485166
[Report]
Anonymous 2015-11-23 07:56:57 Post No.51485166 [Report]
>>51485139
If the site and query being used are using outdated security (or none at all), this would be trivial to do.
However, chances are they are; and you will get caught.
>>
Anonymous 2015-11-23 08:00:59 Post No.51485208
[Report]
Anonymous 2015-11-23 08:00:59 Post No.51485208 [Report]
>>51485127
Well that's a bummer then :/
>>
Anonymous 2015-11-23 08:04:38 Post No.51485230
[Report]
Anonymous 2015-11-23 08:04:38 Post No.51485230 [Report]
>>51485063
just use sqlmap desu
>>
Anonymous 2015-11-23 08:06:07 Post No.51485242
[Report]
Anonymous 2015-11-23 08:06:07 Post No.51485242 [Report]
>>51485164
This is why I was really surrprised to find this error.
>>51485166
Also this is what I feared. Perhaps it's not worth the risk if I even manage to pull it off. What's the worst thing that could happen? Prison?
>>
Anonymous 2015-11-23 09:02:33 Post No.51485582
[Report]
Anonymous 2015-11-23 09:02:33 Post No.51485582 [Report]
>>51485242
Depends on where you live and what data you could have accessed, but prison may be a possibility.
Unless you have a very good reason, or don't care, don't try anything. It's not worth it.
If you want to practice shit like this, there's plenty of online resources to do it legally.
>>
Anonymous 2015-11-23 09:57:38 Post No.51485990
[Report]
Anonymous 2015-11-23 09:57:38 Post No.51485990 [Report]
>>51485242
Just do it via Tor so it's not linked to your IP.

Whoever runs the Tor node at the end will just tell them to fuck off if you cycle circuits until you hit one in a good country.
Thread posts: 11
Thread images: 1
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.