Re: Injected, whats next

From: Jon Hart (jhart@spoofed.org)
Date: Thu Aug 17 2006 - 13:54:54 EDT

• Next message: h1kari@toorcon.org: "ToorCon 8 Call for Papers Closing Tomorrow & Workshops/Seminars Added"
• Previous message: killy: "Re: sniffing plaintext protocols"
• In reply to: DokFLeed: "Injected, whats next"
• Next in thread: Clemens, Dan: "RE: Injected, whats next"
• Reply: Clemens, Dan: "RE: Injected, whats next"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Thu, Aug 17, 2006 at 05:41:06PM +0400, DokFLeed wrote:
> I am testing a web application, I can run UPDATE & SELECT
> Does anyone know a way to upload a file to a server through MySQL !
> does it allow running system commands or a way to dump a file from the
> database to the server?
> its LAMP , Linux, Apache, MySQL, PHP
> any ideas!!

use 'into outfile'. You'll be limited by DB and filesystem permissions,
though.

   select 'foobar' into outfile '/tmp/blahfoo';

-jon

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------

• Next message: h1kari@toorcon.org: "ToorCon 8 Call for Papers Closing Tomorrow & Workshops/Seminars Added"
• Previous message: killy: "Re: sniffing plaintext protocols"
• In reply to: DokFLeed: "Injected, whats next"
• Next in thread: Clemens, Dan: "RE: Injected, whats next"
• Reply: Clemens, Dan: "RE: Injected, whats next"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:45 EDT