Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


EASY SQLI HELP

  • 0 Vote(s) - 0 Average


05-04-2014, 05:51 PM #1
benison321 Offline Junior Member **
Registered
Posts:6 Threads:3 Joined:Feb 2014 Reputation: 0
Mood: None
Welcome Madleets,

LINK:
http://www.whelen.com/auto/product.php?c...rod_id=427

The task is to show following information : Version , User , Database

This is an easy challenge.


SOLVERS LIST:
1.the nighmare
2. T3N38R15

05-04-2014, 09:10 PM #2
the nightmare Offline TeaM MaDLeeTs ***
TeaM MaDLeeTs
Posts:301 Threads:49 Joined:Apr 2014 Reputation: 8
Mood: Hacker
Version 5
Database whelen_menu

05-04-2014, 09:54 PM #3
T3N38R15 Offline ? lawless-coder *****
Moderators
Posts:812 Threads:48 Joined:Jan 2014 Reputation: 126
Mood: Fine
To easy man Smiley1
Version : 5.5.36-cll
User : whelen_menu@108.163.176.158
Database : whelen_menu

[Image: xodhvlpa.jpg]
[Image: test.php]

05-04-2014, 10:22 PM #4
benison321 Offline Junior Member **
Registered
Posts:6 Threads:3 Joined:Feb 2014 Reputation: 0
Mood: None
(05-04-2014, 09:10 PM)the nightmare Wrote:  Version 5
Database whelen_menu

Name added to solvers list.

(05-04-2014, 09:54 PM)T3N38R15 Wrote:  To easy man Smiley1
Version : 5.5.36-cll
User : whelen_menu@108.163.176.158
Database : whelen_menu

Gud Job... Name added to solvers list

05-11-2014, 04:33 AM #5
Mr Proton Offline TeaM MaDLeeTs ***
TeaM MaDLeeTs
Posts:28 Threads:1 Joined:Jan 2014 Reputation: 0
Mood: None
Thanks for challenge.
[Image: vSYLERw.jpg]

05-11-2014, 06:14 AM #6
ali ahmady Offline Sheller *****
Respected
Posts:247 Threads:15 Joined:Jun 2013 Reputation: 3
Mood: None
hi
its better to post an image to prove you solved it urself
else we will consider it as your own target
thnx

ali ahmady

http://zone-h.org/archive/notifier=ali%20ahmady

[Image: 78445698726923881361.gif]
skype : snip3r_ir[At]hotmail.com
jabber : snip3r_ir@limun.org

05-11-2014, 06:25 AM #7
CyberKiller Offline Junior Member **
Registered
Posts:5 Threads:0 Joined:Nov 2012 Reputation: 0
Mood: None
[Image: anuFYSI.jpg]

Here Smiley1

05-12-2014, 12:18 AM #8
danger_beast Offline MaDLeeTs LoVer *****
MaDLeeTs LoVer
Posts:91 Threads:9 Joined:Aug 2013 Reputation: 1
Mood: Evil
Bro it was very easy ! Anyway thanks Biggrinsmiley

[Image: 2qwfolc.jpg]

[Image: 15xk9s5.jpg]

05-12-2014, 01:15 AM #9
Lagon Offline Junior Member **
Registered
Posts:1 Threads:0 Joined:May 2014 Reputation: 0
Mood: Alone
   
whelen_menu~5.5.36-cll~whelen_menu@108.163.176.1581

05-16-2014, 10:18 PM #10
xaeiou Offline Junior Member **
Registered
Posts:6 Threads:1 Joined:May 2014 Reputation: 0
Mood: None
[Image: xpeKBYZ.png]

[Image: LDa6Igy.png]

It have XSS too:
Code:
http://www.whelen.com/auto/product.php?cat_id=74&prod_id='"><img src=x onerror=alert(0)>

When i try to read out data from the columns, then the page blocks the "select" command.
Any idea to bypass this issue?






Forum Jump:


Users browsing this thread:2 Guest(s)