214, 4/11 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   ºí·çÀ®
   http://commaster.egloos.com
   sql injection Áú¹®µå¸³´Ï´Ù.

http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_Web&no=107 [º¹»ç]


id : admin
pw : 'or1=1--

select * from member where id='admin' and pass = ''or 1=1--'                
¾ÏÈ£¿¡ 'or 1=1-- ±¸¹®À» ³ÖÀ¸¸é À§¿Í °°Àº sql±¸¹®ÀÌ ³ª¿À´Â°Å ¸ÂÁÒ?
Á¦ »ý°¢¿¡´Â ¾ÆÀ̵ð´Â admin ÀÌ°í, Æнº¿öµå´Â °ªÀÌ ¾Èµé¾î°¡´Â
°Å ¾Æ´Ñ°¡¿ä? ±×·¯¸é À̶§ ¾ÏÈ£°¡ ¾ø´Ù°í ¶ß´Â°ÇÁö ¾Æ´Ï¸é..
null°ª ÀÚüµµ ÀνÄÇؼ­ null °ªÀ» ¹Þ¾Æ ¾ÆÀ̵ð¿Í Æнº¿öµå ºñ±³Çؼ­ °ÅÁþÀ¸·Î ³ª¿À°í
±×´ÙÀ½ 1=1 °ú ºñ±³Çؼ­ °á±¹ ÂüÀÌ ³ª¿Í Á¶°ÇÀ» µ¹·ÁÁشٴ ¶æÀΰ¡¿ä?
                        


p.s
select * from member where id='admin' and pass = '1313'or1=1--'

¿Ö À̱¸¹®ÀÌ ¾ç½ÄÀÌ Æ²¸°°Ç°¡¿ä?

  Hit : 3412     Date : 2012/04/07 11:50


    
cd80 --µÚ¿¡ °ø¹éÀÌ ÇÑÄ­ÀÌ»ó ÀÖ¾î¾ß ÁÖ¼®Ã³¸® µÇ´Â°É·Î ¾Ë°íÀÖ½À´Ï´Ù
Àúµµ µè±â¸¸ÇѰŶó ¿Ö ±×·±Áö´Â ¸ð¸£°Ú³×¿ä		 2012/04/07  
ºí·çÀ® ±Û½ê¿ä -- µÚ¿¡ °ø¹é ¾È³Ö¾îµµ µÇ´øµ¥.. ¹®Á¦´Â '' ÀÌ°ÅÇÏ°í '1313' µÑ´Ù ¾îÂ÷ÇÇ FALSE °ª ³ª¿ÃÅÙµ¥ ¿Ö '1313'ÀÌ·¸°Ô µÇ¸é ¾ÈµÇ´Â°ÇÁö ¸ð¸£°Ú´Ù´Â°Å¿¡¿ä ..~
 2012/04/07  
supershop ¶ç¾î¾²±â°¡ ¾È µÇ¼­ ±×·±°Ô ¾Æ´Ò±î¿ä... 2012/04/08  
154   서버시간 조작이 가능할까요?[1]     spe
 01/07 3325
153   shell ¿¡ ´ëÇØ ¼³¸íÁ» ÇØÁÖ¼¼¿ä![1]     v_0_0v_
 06/04 3337
152   ¾÷·Îµå Ãë¾àÁ¡ ÀçÁú¹®[1]     Sk1y
 09/14 3344
151   ÀÌ °ø°Ý ¹«½¼ °ø°ÝÀÎÁö ¾Æ½Ã´Â ºÐ[1]     power3122
 03/26 3360
150   sslstripÀ¸·Î Æ®À§ÅÍ ½º´ÏÇÎ Çغ»½ÅºÐ ÀÖ³ª¿ä?     Å×Ã÷
 02/21 3378
149   º¸¾È ±¸ÃàÀ» ¾î¶»°Ô ÇؾßÁö¿ä?[2]     hajunggu
 11/13 3380
148   LibrettoCMS 2.2.2 - Arbitrary File Upload ¾Æ½Ã´ÂºÐ °è½Å°¡¿ä?     Á¦·Î½Ã
 06/16 3380
147   Session º¯¼ö Á¶ÀÛ°ú IP ´ëÁ¶º¸¾È ÀÎÁõ Åë°ú°¡ °¡´ÉÇÑ°¡¿ä ?[1]     $Zero
 03/24 3390
146   level1¿¡¼­¿ä...[2]     studen1
 06/05 3395
145   sqlmap °ü·Ã¹× µ¥ÀÌÅͺ£À̽º °ü·Ã¿¡ Áú¹®ÇÕ´Ï´Ù[1]     r0ki
 10/10 3397
144   passward cracking Áú¹®ÀÖ½À´Ï´Ù[2]     °æ³²123
 01/27 3402
  sql injection Áú¹®µå¸³´Ï´Ù.[3]     ºí·çÀ®
 04/07 3411
142   Ä®¸®¸®´ª½º dvwa ¼³Ä¡°úÁ¤Áß ¿À·ù[2]     wnsdud5534
 01/23 3429
141   ÇÑ±Û ÀÎÄÚµù[5]     h@cking2013
 06/24 3430
140   À¥»çÀÌÆ® DBÁ¤º¸¸¦ ¾Ë·Á¸é ¾î¶»°Ô ÇÏ¸é µÉ±î¿ä?[3]     gumi3359
 06/06 3443
139     [re] Æ÷Æ®½ºÄµÀÌ ºÒ¹ýÀ̾ú³×¿ä;;     4irjuno
 07/31 3452
138   ÀÎÁõ¾ø´Â °ü¸®ÀÚ ÆäÀÌÁö¿¡ ´ëÇÑ Áú¹®[1]     killkill14
 03/28 3471
137   ÀÌ Á¶°Ç¿¡¼­ sql injectionÀÌ °¡´ÉÇÑ°¡°¡ ±Ã±ÝÇÕ´Ï´Ù.[2]     dbman
 05/16 3474
136   ÄÄÇ»ÅÍ¿¡ ´ëÇØ Ã³À½¹è¿ì´Âµ¥ ÇØÅ·¸ÕÀú ¹è¿öµµ µÇ·ÃÁö?[2]     hacker17
 11/17 3488
135   sql injection Áú¹®ÀÖ½À´Ï´Ù ¿ìȸ°ü·Ã[1]     Qwed_na
 09/04 3488
[1][2][3] 4 [5][6][7][8][9][10]..[11]

Copyright 1999-2024 Zeroboard / skin by Hackerschool.org / Secure Patch by Hackerschool.org