Post by Aseem on Oct 9, 2010 17:28:42 GMT 5.5
Well our aim is to enter the data base of the site where usernames n passwords are stored we have to find a vulnerable site ie a web page which ends in product.php?id= so we can gsearch it using inurl:productphp?id=
now let us take a example www.brokenpencil.com/view.php?id=-3492 now to know if its vulnerable we ad a ' and the end www.brokenpencil.com/view.php?id=-3492' and se if we get ny error in this case we c an error on the top of the page means the site can be hacked so now we go on to finding the number of columns in the database so we use an sql code +order+by+x www.brokenpencil.com/view.php?id=-3492+order+by+1
^^no error
www.brokenpencil.com/view.php?id=-3492+order+by+2 ^suppose we c an sql error on top of page means this colom does nt exist there fore we hav only 1 colom in this sites data base so oxyee ankur and luv bigbros i would like u to find the number of coloms in the database of the above adress and pm me once u all get it i wil contineue wid my tute
now let us take a example www.brokenpencil.com/view.php?id=-3492 now to know if its vulnerable we ad a ' and the end www.brokenpencil.com/view.php?id=-3492' and se if we get ny error in this case we c an error on the top of the page means the site can be hacked so now we go on to finding the number of columns in the database so we use an sql code +order+by+x www.brokenpencil.com/view.php?id=-3492+order+by+1
^^no error
www.brokenpencil.com/view.php?id=-3492+order+by+2 ^suppose we c an sql error on top of page means this colom does nt exist there fore we hav only 1 colom in this sites data base so oxyee ankur and luv bigbros i would like u to find the number of coloms in the database of the above adress and pm me once u all get it i wil contineue wid my tute