Garage4hackers Forum - SQL Injection in INSERT Query

Menu
G4H Tutorial and Papers

G4H Tools and Scripts

G4H Exploits

CTF & Meet Writeups
Recent Blog Posts

Teensy USB HID for Penetration Testers - Part 3 - Programming sketches in Arduino

In previous post we saw very basic usage of Arduino Development Environment (ADE) and ran our Hello...
SamratAshok 04-25-2012 10:51 PM

Network Architecture Review Checklist

The primary goal of the checklist is to make it useful and as a trusted guide for IT...
AnArKI 04-22-2012 05:15 PM

Teensy USB HID for Penetration Testers - Part 2 - Basics of Arduino and Hello World

In the first post we installed Arduino Development Environment (ADE). Now lets have a look at...
SamratAshok 04-11-2012 09:17 AM

HP DataProtector - Porting exploit to metasploit.

Nowadays, in almost all my penetration testing projects, HP dataprotector has been the most...
sohil_garg 04-10-2012 04:11 PM

SQL Injection in INSERT Query
by
amolnaik4
Rate this article

Excellent

Good

Average

Bad

Terrible
Published on 02-03-2012 10:48 AM Number of Views: 314

0 Comments
SQL injection is being one of the mostly exploited issues in web application security and has found a place in OWASP Top 10 since 2004. There are many blog posts, papers available on SELECT query injection exploiting WHERE or HAVING clauses. Today I’m going to discuss SQL injection in INSERT query.

Here is PDF of the same.
SQL Injection in INSERT Query.pdf

Any suggestions, comments are welcome.

Cheers,
AMol NAik
- Share
  
  Share this post on
  
  Digg
  
  Del.icio.us
  
  Technorati
  
  Twitter
_{This article was originally published in blog:
SQL Injection in INSERT Query
started by
amolnaik4}

G4H Twitter
Latest Posts

Research Resources for MS SharePoint

This page contains research notes on Microsoft’s SharePoint MOSS and WSS.

Link:
https://www.owasp.org/index.php/Research_for_SharePoint_%28MOSS%29
amolnaik4 Today, 12:25 PM

Lolz, with the title "About Admin" I thought...

Lolz, with the title "About Admin" I thought Admins of garage have been exposed ;)

@hazard74, there is always a proper "way" to ask - you need to discover that. It's not that Pentesters don't have...
b0nd Today, 09:10 AM

Ok, Anant Shrivastava. Im Sorry :)

Ok, Anant Shrivastava.

Im Sorry :)
hazard74 Yesterday, 06:19 PM

not exactly this format but a simmilar kind of a...

not exactly this format but a simmilar kind of a format i have seen as part of malware. This url format was used to get the commands from the remote server. there was a whole bunch of domain names in...
Anant Shrivastava Yesterday, 05:30 PM

Hi Neo, Thanks for your comment. I have...

Hi Neo,

Thanks for your comment. I have already done that... but no success..as these URLs are not recognized by search engines as such. getting some info if anyone has come across with URLs in...
Immaturedevil Yesterday, 05:21 PM

All times are GMT +5.5. The time now is 04:37 PM.

Powered by vBulletin® Version 4.1.7
Copyright © 2012 vBulletin Solutions, Inc. All rights reserved.
Search Engine Optimization by vBSEO

Copyright 2010 - 2012, Garage4Hackers