HomeForumsBugs
 Database Security. Database Auditing. Database Caching. Database Masking. Get it now

Passed the test..

Posted September 19th, 2008 by gat3way
in

Your filter checks for OR....but apparently not XOR.

This query passes your GreenSQL checks:

SELECT * FROM user WHERE name = 'fghg' AND pwd=SHA('d') xor pwd != sha('d')

e.g.
username: fghg
password: d') \ xor pwd != sha('dede

I had a nice time trying to pass the sql injection test :)

GreenSQL is a very good idea, I like it :)

Is it going to implement connection pooling, event-driven socket I/O, etc?

Regards,

Milen Rangelov (mrangelov-at--globul-dot-bg)

‹ another bypass SQL Bypass ›

Comments

Hi gat3way Thank you for

On October 1st, 2008 yoav says:

Hi gat3way

Thank you for your post. This bug will be addressed in new application version. I hope to release it during this week.

Regarding connection polling we are using libevent library to do it for us.
http://monkey.org/~provos/libevent/

Best regards,
Yuli

Back to top