Posted by connection on December 20th, 2011 |
2 commentsToday we have a really great post on Error Based MySQL injection by an all around great guy and one of @hacktalkblog’s twitter followers, Mr. Keith Makan. This tutorial gives a good dork on finding the vulnerabilities and even teaches you how to go from SQLi to XSS, LFI & RFI. The tutorial is after the fold.
READ MORE
Error Based SQLi . sqli . Tutorials
Posted by connection on November 28th, 2011 |
3 commentsIt seems that my recent disclosure of an XSS in a Harvard.edu subdomain has sparked someone to start looking into Harvard a bit more closely. I was recently contacted through IRC and given (through DCC) a database dump of mazur.harvard.edu which, I assume, was found through SQLi. I have uploaded this dump online. Download after the fold
READ MORE
database dump . database leak . Harvard . harvard.edu . pwnage . pwnt . sqli
