Tags » Sqli

SQLMap CheatSheet

Al fin algo que escribo yo.

Sin muchas idas y vueltas, comparto un buen ayuda memoria para cuando nos quedemos colgados en medio de un… 24 more words

Hacking

Is it actually true? SQL injection vulnerabilities surge to highest levels in three years, according to DB Networks analyzed statistics from the National Vulnerability Database, a federally funded repository of cyber-vulnerability data maintained by the National Institute of Standards and Technology.

Article #1:

“After years of steady decline, 2014 witnessed a significant uptick in SQL injection vulnerabilities identified in publicly released software packages. DB Networks research indicates this alarming fact is directly attributed to today’s software development methodology – an emphasis on deadlines and budgets that gives short shrift to the kind of security due diligence that’s more important today than ever before.” 131 more words

It Security

Paypal Partner SQL Injection

One of the Paypal Partner websites http://ppinvoice.com/ was suffering from a POST SQL injection. Union injection was impossible in here.

LoginForm=-1' UNION SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,
16,17,18,19,20,21,22,23,24,25,26,27,28,29,30%23
&LoginForm=3&LoginForm=3&LoginForm=3&yt0=3
… 274 more words
Web Application Security