1 What is SQL injection ?
in which malicious SQL statements are
inserted into an entry field for execution.
1.0 There are two panel of each web site
- first is C-panael
- second is Admin panel
Each web
site have a two panel one is “C panel” and second we have a “admin panel”.
Now we
cannot BAYPASS the C PANEL , But we can BAYPASS “ADMIN PANEL” with some
Codes, But firstly we try with admin admin because the mostly administrator keep username and
password admin admin, So firstly we try with this , If we successfully enter in the admin panel then its
ok otherwise we use some special code like 'or''='
1.2 This is a C-panel
1.3 This is a admin panel
1.4 How to find admin page (panel)
1 With online website like
* http://www.y-shahinzadeh.ir/af/
* http://www.shubshdasyam.com/admin-panel-finder.php
2 With tool like
* Havij
3 With google dorx like
1.5 Now open the admin page (panel)
Firstly here we enter admin admin in user name and password in the login
panel
If we enter in the admin panel then its ok . otherwise we will use code
like ‘or’’=’
In login panel. With this code surely we enter in the admin panel like
this website
1.6 This is a admin panel
.png)
0 comments:
Post a Comment