We all know that Mr. Google is a wonderful tool, and that every day we use to perform searches of any kind. In this case the search is somewhat convoluted, so to speak, the question is that placing a dork, with a string with SQL statements and we can? Get SQLi caused by others.
The point is that if Google does this well, why not put an RESTRICTIONS a bug such as SQL, XSS, RFI, LFI etc. .. etc ...? But Google can not take care of what happens to each site in the world, which should take are the Webmaster of their own pages, so there is a lot more information on the web on how to clean up a SQL query to avoid falling into a SQL INJECTION. Search
The search is performed using Google Hacking
to make this easy: inurl: UNION SELECT 1.2 site: com.ar
this search as Google do is tell us the web with 
chain "UNION SELECT 1.2"
in the URL but we also filter sites
Argentine
"com.ar"
chain "UNION SELECT 1.2" in the URL but we also filter sites
Argentine
"com.ar"
:).
Obetenmos something like this.
Obetenmos something like this.
Well I think everyone is going to attract the attention of Web jesica .. I mmm who already may have done the
Inyecion
. We
the link, and we see that we have a user name and password encrypted (at least encrypted!.) And it seems rather strong, probe some dictionaries and nothing, which can crack it put in comments if you want; .) 
Now you can also see something else. There is a section that is PREMIUM ;)...
In order that the leave to which you want to investigate, nor can give away things not so easy, for it is now Google with its indexing ja ..
In order that the leave to which you want to investigate, nor can give away things not so easy, for it is now Google with its indexing ja ..
Greetings!
0 comments:
Post a Comment