|
EH-Net
|
|
May 22, 2013, 02:08:14 AM
|
|
93
on: May 12, 2013, 08:50:18 PM
|
|
Started by eyenit0 - Last post by eyenit0
|
|
Hi all,
I'm having trouble making SQL injection work with an INSERT statement and I'm not sure what I'm doing wrong. The PHP code for the SQL request looks like this:
mysql_query("INSERT INTO txtcomment (id,comment) VALUES ('" . $_POST['id'] . "','" . $_POST['comment']. "')")
Whenever I try to insert into the comment field, it doesn't seem to work. If I attempt to insert into the ID field, it gives me the error "ERROR: Data truncated for column "id" at row 1". It does that even if I just add a ' to the id parameter. If I put a character other than a number into the ID field, I get the error "ERROR: Out of range value adjusted for column "id" at row 1".
When I attempt in the comment field, my whole query goes into the database, special characters and all. There doesn't seem to be any escaping done in the PHP code, so I can't tell why I can't get it to work.
Any obvious mistakes I'm making?
|
|
94
on: May 12, 2013, 01:26:52 PM
|
|
Started by 3xban - Last post by 3xban
|
|
Wife and I have been chatting about moving out of glorious CT and heading down south to FL. I think after the last couple winters, I may be ready for that change. So I started peaking at the job boards for the Orlando area and there do seem to be some opportunities. Just curious if anyone has any suggestions or may know of any additional opportunities for that area. Another possibility with moving to FL is that the wife would be more tolerant of work related travel. So I would be open to positions that do not require me to be in any particular geographic location.
Thanks for your assistance!
|
|
96
on: May 11, 2013, 02:51:40 AM
|
|
Started by nikmidu - Last post by r00ter
|
|
You don't need to learn a scripting language for OSCP, as you would only use basic scripts for buffer overflow and overall scripting only forms 5% of the course.
But if you have the time and will to learn, it will help you in the future..good luck..
|
|
97
on: May 10, 2013, 10:16:39 PM
|
|
Started by Xtophertaito - Last post by Xtophertaito
|
|
@ ajohnson
from scapy import *
The above statement output :
ImportError: No module named all.
See below:
File "/Users/user/Desktop/ex09.py", line 3, in <module>
from scapy import *
File "/Users/user/Desktop/scapy.py", line 4, in <module>
from scapy.all import *
ImportError: No module named all
logout
Thanks for the reply and I am still stucked here
|
|
98
on: May 10, 2013, 03:15:44 PM
|
|
Started by Xtophertaito - Last post by ajohnson
|
|
It's a difference between versions.
|
|
99
on: May 10, 2013, 02:43:58 PM
|
|
Started by don - Last post by don
|
|
Believe it or not, all went so well, that I even forgot to come back to this thread and let everyone know. Now if the big conversion goes that well, then I think I'll play the lottery soon afterwards.
Don
|
|
100
on: May 10, 2013, 01:18:00 PM
|
|
Started by Xtophertaito - Last post by Dark_Knight
|
|
hmmm I had no issues running this as is on KALI. Adding to from scapy import * did generate an error.
|
Loading...
|
Recent Posts
Tutorials : Need guidance 
