Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > hacker course > Content
Hot Articles
SmoothWall Introduces Lo
Travel of the JSP+Oracle
Hacker skill: Gains Webs
Breaks through the Inter
MYSQL database injection
The Tomcat backstage tak
Breaks through the Inter
The hacker teaches you a
WinHex pursues the code
How does the hacker dest
How teaches you to take
The SQL injection revise
mssql SA jurisdiction ne
Microsoft SQL Server SA
The bored Css cross stat
Recommend Articles
The SQL injection revise
How does the hacker dest
The new military recruit
Union inquires the small
MYSQL database injection
Invades under new skill
How does the website scr
Smells searches works as
How in does the net seep
Microsoft SQL Server SA
A simple invasion, does
The mainstream raises th
The bored Css cross stat
The random combined comm
The hacker teaches you a
New Articles
Check Point offers compa
The malware spreads Cali
Full Disk Encryption pro
Cardholders should take
U.S. still more spam tha
Strong encryption L?solu
ConvexSoft DJ Audio Mixe
Few companies k?can be i
IT professionals can kee
k the media?can not by s
k the media?can not by s
Google Custom Search Eng
Users of the iPhone and
Gateshead College offers
Manchester obtained pass
MYSQL database injection essence(2)
  Add date: 07/10/2008   Publishing date: 07/10/2008   Hits: 76
Total 6 pages, Current page:2, Jump to page:
 

// reads the data from account.
resultSet = statment.executeQuery (“select * from account where accountId
= '“+ request.getParameter (“id”) +” '”);
// circulates, finished until resultSet
while (resultSet.next())
{
// reads the value from resultSet to output to the page.
out.print (resultSet.getInt(1)+ "|"); // takes out the first row value, because is the digital type institute
By is getInt();
out.print (resultSet.getString(2)+ "|"); // takes out the second row value, because is the string of character class
, therefore is getString();
out.print (resultSet.getString(3)+ "|");
out.print (“<br/>”); // page outputs line feeds
}
%>
</body>
</html>
2. crack's use

(bad wolf safety net provides Figure 1)
This was in the database records. The later yellow is the essential sentence, red for input part.
Everybody attention looks at resultSet = statment.executeQuery (“select * from account
where accountId = '“+ request.getParameter (“id”) +” '”);
Here request.getParameter (“id”) is gains GET to pass on senate's id parameter, is also
mysqlInject.jsp? id=1 here id. Like this SQL sentence turned select * from
account where accountId = '1 '. If performs to transform?
2.1 crack's examinations
We wrote id mysqlInject.jsp? id=1' that the SQL sentence turns select * from
account where accountId = '1 ' ', such words SQL sentence has been wrong on the bulletin, because of SQL sentence value
Is needs 2 to contain the mark, for instance ' and”, if is only the digit may anything not write. If does not report the wrong description program replace,
The filtration or other methods protected.

Then we may continue to examine, mysqlInject.jsp? id=1' and ''= ' that the SQL sentence changes
Has become select * from account where accountId = '1 ' and ''= '', should return positively
Often.

Some people said why I do return not normally? Some 2 kind of reasons, first was the procedure filters the malicious character; Second is a regulation
The foreword sentence and I write dissimilar select * from account where accountId = 1 ' and ''= '.
This question will talk about under.
2.2 Union inquiries guess this inquiry row quantity
Here some people will say that guessed what this inquiry row quantity will have to use? If is only the examination does not certainly have, but you want to enter one
A step use that had the big use, behind the article will talk about, patience.
If understands SQL the human should know the UNION inquiry? The UNION inquiry is inquires jointly, carries out the second inquiry
The sentence will return to the value and this inquiry merge.
Everybody thinks, if what condition can need with this inquiry value merge? Needs to unite the inquiry the enumeration and this
Inquiry's enumeration is equal. If does not want to wait will be unable to merge, will then be wrong on the bulletin. Through this characteristic intelligent you should

 
Other pages: : <<Prev * 1 * 2 * 3 * 4 * 5 * 6 * Next>>
Prev:Union inquires the small skill Next:Invades under new skill - CMD to add the sql account number

Comment:

Category: Home > hacker course
Home