Websites' Query Strings [URL] - Printable Version
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: Other (https://sampforum.blast.hk/forumdisplay.php?fid=7)
+--- Forum: Everything and Nothing (https://sampforum.blast.hk/forumdisplay.php?fid=23)
+--- Thread: Websites' Query Strings [URL] (/showthread.php?tid=581901)
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: Other (https://sampforum.blast.hk/forumdisplay.php?fid=7)
+--- Forum: Everything and Nothing (https://sampforum.blast.hk/forumdisplay.php?fid=23)
+--- Thread: Websites' Query Strings [URL] (/showthread.php?tid=581901)
Websites' Query Strings [URL] - amirab - 16.07.2015
Hey ,
I wanted to know is there anyway to find an URL Query String ?
i mean like these sites : blahblah.com/blah.php?a=blah&b=blah&.....
like samp forums : http://forum.sa-mp.com/newthread.php?do=newthread&f=23
but i want to find and get it from another website because it's hidden or using HTML Post way
this is the website : http://globfone.com/sms/
Re: Websites' Query Strings [URL] - KingHual - 16.07.2015
there isn't unless you have the source code or scan the whole website for form info
Re: Websites' Query Strings [URL] - Extremo - 16.07.2015
If you're looking for remote file inclusion vulnerabilities, javascript injections, SQL injections or any other known vulnerability, you're going to have to look for it on your own. No one here is going to help you and tell you whether some website you don't like has a vulnerability, or whether the URL inputs are sanitized or not.
EDIT: If you're looking to remotely send text messages to that site, simply POST your own form to their respected pages and simulate user-input.
Re: Websites' Query Strings [URL] - Mauzen - 16.07.2015
You can find the POST data e.g. with wireshark. Needs some knowledge, but it works.
Re: Websites' Query Strings [URL] - GWMPT - 16.07.2015
Quote:
|
Originally Posted by amirab
 i mean like these sites : blahblah.com/blah.php?a=blah&b=blah&.....
but i want to find and get it from another website because it's hidden or using HTML Post way |
Little example from the Slim Framework:
PHP код:
$app->get("/User/:name", function($name) {
echo "Hello there {$name}!";
});
Hello there GWMPT!
And like you can see, there are no GET variables being passed over the URL.
Re: Websites' Query Strings [URL] - Mauzen - 16.07.2015
Also seems to use captchas. So even if you can send an automated request somehow, you wont be able to send SMS automatically from your script or whatever.
Re: Websites' Query Strings [URL] - Crystallize - 16.07.2015
Quote:
|
Originally Posted by Extremo
If you're looking for remote file inclusion vulnerabilities, javascript injections, SQL injections or any other known vulnerability, you're going to have to look for it on your own. No one here is going to help you and tell you whether some website you don't like has a vulnerability, or whether the URL inputs are sanitized or not.
EDIT: If you're looking to remotely send text messages to that site, simply POST your own form to their respected pages and simulate user-input. |
And you're right about everything you said
Re: Websites' Query Strings [URL] - KingHual - 16.07.2015
Re: Websites' Query Strings [URL] - StuartD - 16.07.2015
^
Re: Websites' Query Strings [URL] - Extremo - 16.07.2015
Quote:
|
Originally Posted by Wizzard2H
We have a badass blackhat over here :P
And you're right about everything you said |