WELCOME TO CYBER NINJAS OFFICIAL BLOG! BROWSE GREAT POST ABOUT TECH , GADGETS AND MANY MORE THANKS FOR VISITING!
AD SPACE

Friday, 20 February 2015

Home / Unlabelled / MySQL injection (Step1) - how to find vulnerblity in sites

MySQL injection (Step1) - how to find vulnerblity in sites

by on

SQL - structured query language
VULN- vulnerable
to start sql we should find 1st vuln site. In other word to inject a site you need to find a vuln site.
To find vuln site we need to use 'Dork'
which mean searching vuln site from googLe Using dork
some of the dorks are here-
Step1 : open google search type this in search box :

inurl:news.php?id=

now you see the result include id= at the last on every url u will open in result!
www.site.com/news.php?id=13
you can use random query instead of 'news.php" like some demos :

login.php?id=
event.php?id=
news.php?id=

This are the some example of dorks there are thousand of dorks to find vuln sites among them this are the some.. Now google this dork and open one site and put this sign after id=something it means
id=1'
id=20' don't change value after id=20 this is just an example to see either sites is vuln or not to inject.. So after putting this ' sign you will get sql error if you get sql error then it is vuln and those site which you find vuln comment below.. For 24hour this one step is finish any confuse comment below.. 

Hope you understand it
Related Posts:
By at

3 comments:

  1. Gary14 December 2019 at 21:32


    I'm here to testify about Mr John Blank ATM Cards which can withdraw money from any ATM machines around the world.. firstly I thought it was scam until I saw so many testimony about how Mr John sent them the ATM blank card and how it was used to withdraw money in any ATM machine and become rich so I decided to risk the opportunity I contacted him also and I applied for the Blank Card to my greatest surprise I have used it to get 10,000 dollars. maximum withdrawal daily $1,000, Mr John is giving out the card just to help the poor. Hack and take money directly from any ATM Machine Vault,If your interested kindly contact him directly on his email (johnlopez1945@gmail.com)

    ReplyDelete
  2. Gary14 December 2019 at 21:32


    I'm here to testify about Mr John Blank ATM Cards which can withdraw money from any ATM machines around the world.. firstly I thought it was scam until I saw so many testimony about how Mr John sent them the ATM blank card and how it was used to withdraw money in any ATM machine and become rich so I decided to risk the opportunity I contacted him also and I applied for the Blank Card to my greatest surprise I have used it to get 10,000 dollars. maximum withdrawal daily $1,000, Mr John is giving out the card just to help the poor. Hack and take money directly from any ATM Machine Vault,If your interested kindly contact him directly on his email (johnlopez1945@gmail.com)

    ReplyDelete
  3. Monica24 January 2020 at 23:29

    Darknet genuine money related sellers and trick commercial center audits | FULLZ, CC can be purchased from Deepweb
    ordering from darkweb financial websites .

    ReplyDelete

Subscribe to: Post Comments (Atom)
Adbox