Penetration Testing mailing list archives
RE: testing vulnerable web application.
From: "Zed Qyves" <zqyves.spamtrap () gmail com>
Date: Tue, 27 Jun 2006 11:33:37 +0300
-----Original Message----- From: Dave [mailto:fla.tech.talk () gmail com] Sent: Monday, June 26, 2006 5:42 AM To: pen-test () securityfocus com Subject: testing vulnerable web application. pen testers, ... When we try to test these POC snippets we dont get results. Examples we have tried: USING example : admincp/user.php?do=find&orderby=username&limitnumber=[SQL] we crafted a URL:
From the actual advisory:
/admincp/user.php: GET: <do=find&orderby=username&limitnumber=[SQL-Injection]> Limit number is wher the SQL Injection occurs. you still need to break out of the original qyery and find the correct syntax and maybe INSERT is not possible from this feld. there are many factors that need to be taken under consideration in SQL injection. I would also loose the [] around the parameter, although I have NEVER seen/played with a vBulletin and they may be required. What exactly is the point of this exersize? why don't you just upgrade to the latest version apart from the obvious monetary "penalty" associated with it? ZQyves ------------------------------------------------------------------------------ This List Sponsored by: CenzicConcerned about Web Application Security? Why not go with the #1 solution - Cenzic, the only one to win the Analyst's Choice Award from eWeek. As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/news_events/wpappsec.php And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------
Current thread:
- testing vulnerable web application. Dave (Jun 26)
- Re: testing vulnerable web application. Rogan Dawes (Jun 26)
- Re: testing vulnerable web application. Morning Wood (Jun 26)
- Re: testing vulnerable web application. Steven (Jun 26)
- <Possible follow-ups>
- Re: testing vulnerable web application. josh . perrymon (Jun 26)
- RE: testing vulnerable web application. Zed Qyves (Jun 27)
- Re: testing vulnerable web application. Rogan Dawes (Jun 26)