I'm trying to inject a second command that will get executed after the select, but before the password check. Am I on the right track?
This works locally for me, but when I try it on wechall I get an "GDO 1064". Is there something "blocking" executing two queries with the command "queryFirst"?
You cannot execute two queries in a single query.
This is a limitation, once introduced for security, in mysql/mysqli (if i recall correctly)
Most other languages and their mysql bindings should have the same limits.
I googled a bit and it seems that it would be possible.
Take a look at
https://stackoverflow.com/questions/802437/how-to-execute-two-mysql-queries-as-one-in-php-mysqlThe geeks shall inherit the properties and methods of object earth.
Clasificación global: 14621
Puntuación total: 104
Mensajes: 1
Agradecer: 1
Voto positivo: 1
Registrado: 5A 337d
Última vez visto: 5A 335d
El usuario está desconectado
with the username, I can use the sql injection, but I don't know how to bypass the password check.
exp32, that is not a question. It also does not relate to the topic of this thread.
Perhaps research SQLi a bit more?
@exp32: Just make your sent data fulfil the password check.... at least that's what i want you todo ;)
The geeks shall inherit the properties and methods of object earth.