|
|
Penetration Testing
Quite basic SQL injection question Apr 18 2011 07:51AM Alexandre De Dommelin (adedommelin tuxz net) (3 replies) Re: Quite basic SQL injection question Apr 19 2011 12:39PM Justin Klein Keane (jkleinkeane gmail com) Re: Quite basic SQL injection question Apr 19 2011 11:37AM arvind doraiswamy (arvind doraiswamy gmail com) |
|
Privacy Statement |
Sent via BlackBerry from Danux Network
-----Original Message-----
From: Alexandre De Dommelin <adedommelin (at) tuxz (dot) net [email concealed]>
Sender: listbounce (at) securityfocus (dot) com [email concealed]
Date: Mon, 18 Apr 2011 09:51:46
To: <pen-test (at) securityfocus (dot) com [email concealed]>
Subject: Quite basic SQL injection question
Hi all,
I'm evaluating PHP/Mysql code and I found a problem, in the following code :
<?php
$query="
SELECT *
FROM table1 m JOIN table2 t
$condition
ORDER BY m.field1, t.field2
";
$db->query($query);
?>
I'm able to inject everything I want into $condition, but I can't manage to
make the ORDER clause to be ignored (using -- /* ...), which leads to an sql
error.
I'm sure it's quite stupid but I have to admit that i'm stucked ...
Do you have an idea ?
Bests,
Alex
------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org
------------------------------------------------------------------------
[ reply ]