SQL Injections

Posted by ghimau under
While helping Abg Mazani teaching Powerpoint Course, I did 'try' some sites hunting for sql injections login bypass.

Kak Zaimah did'nt come to ofiice today.


Indian Jurnal Site login page


Logged in as the first user


Got the username


Cineplex login page



Logged in :)

Target : http://219.94.87.77/BP/Asps/Login/default.asp
Table UserAcc
Column varUserID,varUserPwd

Keyword is : blind *ql hihihi

2 comments:

On 25 June 2007 at 14:14 , فيصل said...

hua... sql injection... tq for the info :)

 
On 25 June 2007 at 15:56 , ghimau said...

ala.. ko tu lagi otai :)