1. SA-MP Forums Archive
  2. SA-MP Scripting and Plugins
  3. Scripting Help

Linear Mode
SQL Injection
Vince
Spam Machine
*****
Posts: 10,066
Threads: 38
Joined: Sep 2007
Reputation: 0
#4

20.07.2012, 16:05
Quote:
Originally Posted by VincentDunn
Посмотреть сообщение
I'm not sure how it would be done in a sa-mp server, attackers attack forums usually.
Mostly through login dialog. Most servers use the new DIALOG_STYLE_PASSWORD for that so the characters aren't visible anymore, but still ... Consider this query:
PHP код:
SELECT id FROM playerinfo WHERE name '%s' AND password sha1('%s'LIMIT 1
If the pass is not escaped, one could possibly input in the dialog box:
Код:
blah') OR TRUE --
which would make the query:
PHP код:
SELECT id FROM playerinfo WHERE name '%s' AND password sha1('blah') OR TRUE -- ) LIMIT 1
The double dash is the start of a comment in SQL syntax.
Find
Reply
« Next Oldest | Next Newest »


Messages In This Thread
SQL Injection - by Swyft™ - 20.07.2012, 15:51
Re: SQL Injection - by ReneG - 20.07.2012, 15:57
Re: SQL Injection - by Steven82 - 20.07.2012, 16:02
Re: SQL Injection - by Vince - 20.07.2012, 16:05
Re: SQL Injection - by ReneG - 20.07.2012, 16:11
Re: SQL Injection - by SuperViper - 20.07.2012, 16:44
Re: SQL Injection - by Christopher - 20.07.2012, 16:55

Forum Jump:


Users browsing this thread: 1 Guest(s)
  1. SA-MP Forums Archive
  2. SA-MP Scripting and Plugins
  3. Scripting Help