Дык а трабла то в чем?

Уже ни в чём,лови плюсики )))

Доброго времени суток.
Третий час уже пытаюсь узнать в чем дело:
SQL иньекция на лицо.
Составляю запрос
Но в ответ пишет:
Может кто знает в чем дело?

sakh_rider, дело в том что ты не знаешь что такое sql-inj и как оно работает.

По теме - фильтруеца "/*"

Да знаю йа что такое sql injection, да и как работают тоже ... Уже были сайты, в которых получалось...
Вот просто множество запросов перепробовал, а вылазит одно и тоже именно на етом сайте

"+" тож пробовал(

Блин, столько времени и все зря...
SELECT command denied to user 'ege'@'pro.iot.ru' for table 'users'

ку !
есть трабла имеется сайт на который удалось залить шелл в определенную диру но в ней отключены команды систем() ексек() итд но разришена include !
Вопрос возможно ли сделать так чтобы при инклуде шелла обойти эту диру и заинклудить его на директорию выше?
example:
/сс/сммммс/123/_залит_файл_с функц_инклуд/ возможно ли заинклудить в папку /123/??

Нужна помощь.

Microsoft OLE DB Provider for SQL Server ПРЗљ '80040e14'

'or' ХАПіЕх БйУГРЧ БИЙЎРЬ РпИјЕЧОњНРДЯДй.

/community/best_screenshot.asp, Сй 5

Страница в кодировке ISO-8859-5.
Как сделать так,чтобы отображалось нормально?).Кодировки менять пробывал =_=


И ещё - на одном сайте проинклудил файлы - my.cnf (mysql) и httpd.conf.Вот содержание файлов :

1.my.cnf -

# Example mysql config file for large systems. # # This is for large system with memory = 512M where the system runs mainly # MySQL. # # You can copy this file to # /etc/my.cnf to set global options, # mysql-data-dir/my.cnf to set server-specific options (in this # installation this directory is /usr/local/mysql/data) or # ~/.my.cnf to set user-specific options. # # One can in this file use all long options that the program supports. # If you want to know which options a program support, run the program # with --help option. # The following options will be passed to all MySQL clients [client] #password = your_password port = 3306 socket = /var/lib/mysql/mysql.sock ###default-character-set=utf8 # Here follows entries for some specific programs [server] ###init-connect="SET NAMES cp1251" ###skip-character-set-client-handshake ###default-character-set=utf8 # The MySQL server [mysqld] ###default-character-set=utf8 ###character-set-server=utf8 ###collation-server=utf8_general_ci ###init-connect="SET NAMES cp1251" ###skip-character-set-client-handshake datadir=/home/mysql4.data port = 3306 socket = /var/lib/mysql/mysql.sock #log = /usr/local/mysql/data/mysqld.log ###default-character-set = cp1251 skip-locking log_slow_queries = /home/mysql4.data/slow_sql.log long_query_time = 10 join_buffer_size=1M interactive_timeout=60 max_connections=300 max_user_connections=15 key_buffer=512M max_allowed_packet = 2M table_cache = 1024 sort_buffer_size = 2M record_buffer=2M thread_cache=8 connect_timeout=10 max_tmp_tables=64 myisam_sort_buffer_size=256M read_buffer_size = 1M query_cache_size= 16M # Try number of CPU's*2 for thread_concurrency thread_concurrency = 4 # Don't listen on a TCP/IP port at all. This can be a security enhancement, # if all processes that need to connect to mysqld run on the same host. # All interaction with mysqld must be made via Unix sockets or named pipes. # Note that using this option without enabling named pipes on Windows # (via the "enable-named-pipe" option) will render mysqld useless! # # Replication Master Server (default) # binary logging is required for replication #log-bin # required unique id between 1 and 2^32 - 1 # defaults to 1 if master-host is not set # but will not function as a master if omitted server-id = 1 # Replication Slave (comment out master section to use this) # # To configure this host as a replication slave, you can choose between # two methods : # # 1) Use the CHANGE MASTER TO command (fully described in our manual) - # the syntax is: # # CHANGE MASTER TO MASTER_HOST=, MASTER_PORT=, # MASTER_USER=, MASTER_PASSWORD= ; # # where you replace , , by quoted strings and # by the master's port number (3306 by default). # # Example: # # CHANGE MASTER TO MASTER_HOST='125.564.12.1', MASTER_PORT=3306, # MASTER_USER='joe', MASTER_PASSWORD='secret'; # # OR # # 2) Set the variables below. However, in case you choose this method, then # start replication for the first time (even unsuccessfully, for example # if you mistyped the password in master-password and the slave fails to # connect), the slave will create a master.info file, and any later # change in this file to the variables' values below will be ignored and # overridden by the content of the master.info file, unless you shutdown # the slave server, delete master.info and restart the slaver server. # For that reason, you may want to leave the lines below untouched # (commented) and instead use CHANGE MASTER TO (see above) # # required unique id between 2 and 2^32 - 1 # (and different from the master) # defaults to 2 if master-host is set # but will not function as a slave if omitted #server-id = 2 # # The replication master for this slave - required #master-host = # # The username the slave will use for authentication when connecting # to the master - required #master-user = # # The password the slave will authenticate with when connecting to # the master - required #master-password = # # The port the master is listening on. # optional - defaults to 3306 #master-port = # # binary logging - not required for slaves, but recommended #log-bin # Point the following paths to different dedicated disks #tmpdir = /tmp/ #log-update = /path-to-dedicated-directory/hostname # Uncomment the following if you are using BDB tables #bdb_cache_size = 64M #bdb_max_lock = 100000 # Uncomment the following if you are using InnoDB tables #innodb_data_home_dir = /usr/local/mysql/data/ #innodb_data_file_path = ibdata1:10M:autoextend #innodb_log_group_home_dir = /usr/local/mysql/data/ #innodb_log_arch_dir = /usr/local/mysql/data/ # You can set .._buffer_pool_size up to 50 - 80 % # of RAM but beware of setting memory usage too high #innodb_buffer_pool_size = 256M #innodb_additional_mem_pool_size = 20M # Set .._log_file_size to 25 % of buffer pool size #innodb_log_file_size = 64M #innodb_log_buffer_size = 8M #innodb_flush_log_at_trx_commit = 1 #innodb_lock_wait_timeout = 50 [mysqldump] quick max_allowed_packet = 16M [mysql] no-auto-rehash # Remove the next comment character if you are not familiar with SQL #safe-updates [isamchk] key_buffer = 128M sort_buffer_size = 128M read_buffer = 2M write_buffer = 2M [myisamchk] key_buffer = 128M sort_buffer_size = 128M read_buffer = 2M write_buffer = 2M [mysqlhotcopy] interactive-timeout