1. Cross site scripting (XSS)
The problem: The “most prevalent and pernicious” Web application security vulnerability, XSS flaws happen when an application sends user data to a Web browser without first validating or encoding the content. This lets hackers execute malicious scripts in a browser, letting them hijack user sessions, deface Web sites, insert hostile content and conduct phishing and malware attacks.
Read more…
Categories: Database Security, Linux, Server Security, Tutorialz, Website Security Tags: database, DOS, hack, hacked, hacking, javascript, MSSQL, mysql, network, networking, password, permission, security, sql injection
[1] Introduction
[2] Little panning of Perl language used into an internet context
[3] Perl SQL Injection by examples
[4] Gr33tz to …
Read more…
Categories: Database Security, Linux, Server Security, Tutorialz Tags: database, db, explots, hack, hacked, hacking, ip, ip address, ipchain, linux, MSSQL, mysql, network, networking, password, perl, perl exploits, programming, security, sql injection, unix, web security
-[ SUMMARY ]———————————————————————
Introduction
Injecting SQL
Exploiting a Login Form
Exploiting Different SQL Statement Type
Basic Victim Fingerprinting
Standard Blind SQL Injection
Double Query
Filters Evasion
SQL Injection Prevention
Conclusion
———————————————————————————
Read more…
Categories: Database Security, Server Security Tags: database, db, hack, hacked, hacking, linux, microsoft, mysql, network, networking, permission, security, sql, sql injection, sql injections, user, web, web app, web security
Currently only for MySQL and Microsoft SQL Server. Most of the samples are not correct for every single situation. Most of the real world environments may change because of parenthesis, different code bases and SQL sentences.
Read more…
Categories: Database Security, Website Security Tags: cheatsheet, database, db, hacked, hacking, microsoft, MSSQL, mysql, network, root, security, sql, sql injection, sql server