 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 |
cannot into outfile |
 |
 Posted: Thu Mar 27, 2008 9:48 am |
 |
|
| onbiew |
| Regular user |
 |
|
| Joined: Nov 29, 2005 |
| Posts: 12 |
|
|
|
 |
|
 |
|
http://www.******.com/news.php?nid=-2013+union+select+1,2,3,4,5,6,7,8,9,10,11+into+outfile+concat(char(67,58,92,65,112,112,83,101,114,118,92,119,119,119,92,116,101,115,116,[...]116))/*
and has error:
1064 - You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'concat(char(67,58,92,65,112,112,83,101,114,118,92,119,119,119,92,116,101,115,116' at line 1
i can load file insite...
what error in my exploit code? |
|
|
|
|
| Posted: Thu Mar 27, 2008 3:33 pm |
|
|
| pexli |
| Valuable expert |
 |
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
|
|
|
|
|
|
|
|
| Posted: Thu Mar 27, 2008 4:28 pm |
|
|
| waraxe |
| Site admin |
 |
|
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
As far as i know, INTO OUTFILE wants simple text string as file path! No concat, no "0x1122330", no HEX, no UNHEX, etc ...
And if php has "magic_quotes=on" (most servers do this), then INTO OUTFILE will simply not work. |
|
|
|
|
| Posted: Fri Mar 28, 2008 2:51 am |
|
|
| onbiew |
| Regular user |
|
|
| Joined: Nov 29, 2005 |
| Posts: 12 |
|
|
|
|
|
|
|
| Quote: | | Try without concat. |
i try, but 
| Quote: | As far as i know, INTO OUTFILE wants simple text string as file path! No concat, no "0x1122330", no HEX, no UNHEX, etc ...
And if php has "magic_quotes=on" (most servers do this), then INTO OUTFILE will simply not work. |
sometime, INTO OUTFILE works with concat and char (i tested), in my exploit, maybe magic_quotes replace string...
thank |
|
|
|
|
| Posted: Sat Mar 29, 2008 9:34 pm |
|
|
| nezzus |
| Beginner |
|
|
| Joined: Jan 03, 2008 |
| Posts: 4 |
|
|
|
|
|
|
|
| " into outfile " work only if mysql user is "root" .don't work with other |
|
|
|
|
| Posted: Sat Mar 29, 2008 10:55 pm |
|
|
| pexli |
| Valuable expert |
|
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
|
|
|
|
| nezzus wrote: | | " into outfile " work only if mysql user is "root" .don't work with other |
Yeah.First time heard this bull shitt. |
|
|
|
|
| Posted: Sat Mar 29, 2008 10:58 pm |
|
|
| waraxe |
| Site admin |
|
|
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
| nezzus wrote: | | " into outfile " work only if mysql user is "root" .don't work with other |
"INTO OUTFILE", "LOAD_FILE" and "LOAD DATA INFILE" are mysql file-related operations and need FILE privilege. Root user does have it of course, but FILE privilege can be delegated to other users too! So it's not right to say, that only root has file opration possibilities, all users with FILE privileges can use file-related mysql functions. |
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 130
Members: 0
Total: 130
