From: Serg B. (sergicles@gmail.com)
Date: Fri Aug 18 2006 - 06:45:31 EDT
Sounds like you are exploiting someonce server, not testing an
application!
An application test would stop with proof of SQL injection - no need to
go further.
On Thu, 2006-08-17 at 17:41 +0400, DokFLeed wrote:
> I am testing a web application, I can run UPDATE & SELECT
> Does anyone know a way to upload a file to a server through MySQL !
> does it allow running system commands or a way to dump a file from the
> database to the server?
> its LAMP , Linux, Apache, MySQL, PHP
> any ideas!!
>
> Dok
> smoke dope, eat soap, fly home in a bubble
>
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
> http://www.cenzic.com/products_services/download_hailstorm.php
> ------------------------------------------------------------------------
>
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:45 EDT