- the variable that holds the sql query is $sql_query
- that sql_query variable can be set using get method
- simply try to view the entire database
- use upper case letters for the query words like SELECT, FROM, etc
first give some random value in the password box, you will end up with wrong sql query in the next page. but u will find that the script is weak. so u will find the name of the password database.
now its very simple to view the database.
Ans:
the password database is family_db
in the address bar, add the following arguements without coates
"?sql_query=SELECT * FROM family_db"
actually the address will look like http://www.hellboundhackers.org/challenges/basic8/secure-area.php?sql_query=SELECT%20*%20FROM%20family_db
now the password will be shown to you. and also there will be a text box requesting u for the password
just see and type the password(the password is KingKond) in the text box. you will be given 30 points
No comments:
Post a Comment