Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


Sqli Only For Master's

  • 0 Vote(s) - 0 Average


03-26-2017, 03:12 AM #1
ehacker Offline eSec Hax0r (CEH) *****
Moderators
Posts:52 Threads:23 Joined:Mar 2017 Reputation: 1
Mood: Hacker
Hello All

link ~ http://accurateassessor.com/recordsearch.php?id=82

waf ~ Off

Task ~ Union Based , Print Your Name, Version, User & Database.

Rules ~
1. Don't use ( @@version, version(),@@global.version ) to get teh version.
2. Don't use any of these ( regexp,like, rlike, limit, not in, !=, not like,procedure analyse(), equal sign *=*,global_variables, or, %20, %0a, %0b,%0c, %0d, %a0, parenthesis *as a whitespace*).
3. You may use local variables but can't declare them in any concatenating/mathematical/comparison/enc-dec functions like( concat(), greatest(), strcmp(), aes_decrypt() ).
5. The version, user, and database must be in local variables.
6. You may use 'and & div' only once in your query.
7. Finally, Everything shall be in one *vuln* column and in that column you may use any concatenating with local variables and html only eg; concat(@a, "<br>").
8 Send Your Query On Madleets : http://www.madleets.com/User-ihacker

Youtube Channel : https://www.youtube.com/channel/UC7CVhRs...rZQ/videos

Solver:

1) Hunter PCA
2)
3)
4)
5)

My Proof

[Image: 7143e887a0c44a90944b0f6755f80604.png]

Heart Kn0wledge !s P0wer Heart






Forum Jump:


Users browsing this thread:1 Guest(s)