sql injections, anyone?

cred Sun Feb 20, 2011 12:38 am

The only input I see is a turing on their downloads
It appears to be local, someone who's proxied up wanna check out some sql injections? Could possibly get a userlist, maybe some password hashes.

4cidburn Sun Feb 20, 2011 1:15 am

im new to sql but i fucking hate these morons but theres got to be some kind of input on there front page but if you can get some pass hashes that would be awesome but ill help with your sql

cred Sun Feb 20, 2011 1:44 am

their downloads page seems to be the only one... I am shit with sql injections, haven't messed with them in a while, the 1=1 trick didn't work, but once I passed the turing, I found out something much more interesting... They're using a scriptset called linklokurl made by vibralogix. Google seems clueless as to whether or not there are any exploits for it, but there must be. It's pay software, but there are illegal copies available, so once someone who knows their PHP gets a look at it, it's only a matter of time before we get some good intel.

z3r0c00l Sun Feb 20, 2011 1:58 pm

I can DEFINITELY get us some password hashes

hash Mon Feb 21, 2011 1:24 am

Lets get those hash's

Sponsored content

sql injections, anyone?

sql injections, anyone?

im down for sql

Re: sql injections, anyone?

Re: sql injections, anyone?

lets

Re: sql injections, anyone?