Angelo Montalban Pinque Challenge Solution By Black EyE – SQLi Basic

Hi,
My Facebook Link: https://www.facebook.com/shaifullah01
site: http://www.icdcprague.org
My Blog: http://sqli-basic.blogspot.com/

I am Black_EyE from Bangladesh.
#** This Video Only for Education Purpose.**#

Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/luthi/domains/luthi.co.il/public_html/profile.php on line 6
Don’t be fixed :
now we try to without ‘ symbol 😀
No Error Fixed 😀
25 No Column.
Still No Error
😀
Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/luthi/domains/luthi.co.il/public_html/profile.php on line 6
when we put 26 column, here we find error again 😀
so here have only 25 columns
try to uNioN SeLecT
😀
This called Waf
403 Forbidden Waf
😀 we now try to solve using Waf Bypassed Method
Now we try to bypass SelEcT 😀
using /*!12345seLecT*/
Still Waf
Let’s See my query 😀
Here also waf in / symbol after union or after select 😀
so try to use BOF
BOF= Buffer Over Flow
as like: %23AAAAAAAAAAAAAAAA%0A
Here no Error in Site. But Our Url Can Work.
So, Let’s Go to make our query false 😀
as like input – symbol before parameter or
use is null after parameter 😀
we find Vuln Columns.
Now needed to pring version 😀
task: Print only the version
try to use version()
Error in version command. here also waf.
needed to bypass. we can use @@version for
print version 😀
thanks for watch my video
please subscribe my channel for learn
sqli manual basic command 😀
Allah Hafez 😀

**** all query I posted in videos description.
**** Please stay with me, subscribe, like & share my video if you are **** interested & get some knowledge.

My Facebook Link: https://www.facebook.com/shaifullah01
My Blog: http://sqli-basic.blogspot.com/




Leave a Reply

Your email address will not be published. Required fields are marked *

Name *
Email *
Website