CIPWTTKT&GC V0x0F (v15): Scoot and Deeps Drama Diaries
25,625 replies, posted
I just got thinking, can you like, store PHP in SQL and then call it and run it?
Because the inventory database I'm working doesn't check dick, so if you inject at that point shit into the item database, when it gets read from the database, would the PHP run, since it's read onto the page while PHP is parsing through the crap?
PHP starts parsing page
MySQL library loads shit onto page that PHP uses
Our PHP gets loaded onto page, stop the normal execution and run our own shit?
[QUOTE=Samuka97;33535650]
I still remember the shitload of videos everyone uploaded bitching when YouTube changed their video format to 16:9[/QUOTE]
[video=youtube;oALIJQnaDDA]http://www.youtube.com/watch?v=oALIJQnaDDA[/video]
Ashens did one of my favorites
[QUOTE=nikomo;33535696]I just got thinking, can you like, store PHP in SQL and then call it and run it?
Because the inventory database I'm working doesn't check dick, so if you inject at that point shit into the item database, when it gets read from the database, would the PHP run, since it's read onto the page while PHP is parsing through the crap?
PHP starts parsing page
MySQL library loads shit onto page that PHP uses
Our PHP gets loaded onto page, stop the normal execution and run our own shit?[/QUOTE]
you're asking this in the wrong place, there is a web development section that I never see you in :v:
[QUOTE=nikomo;33535696]I just got thinking, can you like, store PHP in SQL and then call it and run it?
Because the inventory database I'm working doesn't check dick, so if you inject at that point shit into the item database, when it gets read from the database, would the PHP run, since it's read onto the page while PHP is parsing through the crap?
PHP starts parsing page
MySQL library loads shit onto page that PHP uses
Our PHP gets loaded onto page, stop the normal execution and run our own shit?[/QUOTE]
Possible, yes. But it will most likely just break the code, unless they know how your php works.
[QUOTE=mobrockers2;33535717]Possible, yes. But it will most likely just break the code, unless they know how your php works.[/QUOTE]
You could just call ?> and <? phpinfo(); ?> probably just to get some basic information from the target.
Problem is, that'd be kind of a suicidal attack, since depending on what order the database is read, if you tried to add a new "item" to the database, your earlier shit would stop the reading of the database before the later one would get read.
[QUOTE=nikomo;33535749]You could just call ?> and <? phpinfo(); ?> probably just to get some basic information from the target.
Problem is, that'd be kind of a suicidal attack, since depending on what order the database is read, if you tried to add a new "item" to the database, your earlier shit would stop the reading of the database before the later one would get read.[/QUOTE]
Don't use short tags. Also it doesn't matter if it would work or not. You don't want people to enter stuff into your database that isn't supposed to be there, ever. Restrict it so that they can only enter exactly what is supposed to be in there, nothing else.
Good thing it already has shit to replace a lot of common crap that would never be used in the input but would be used in the attack.
Actually, the only vulnerable part of the code I found is the shit I wrote.
[QUOTE=Samuka97;33535650]
I still remember the shitload of videos everyone uploaded bitching when YouTube changed their video format to 16:9[/QUOTE]
I don't see why anyone would NOT want this.
[QUOTE=nikomo;33535696]would the PHP run, since it's read onto the page while PHP is parsing through the crap?[/QUOTE]
If you aren't running the page through eval, it won't run. It can't run exactly because it's read to the page while PHP is parsing - it's the result of the parsing.
[QUOTE=esalaka;33536046]If you aren't running the page through eval, it won't run. It can't run exactly because it's read to the page while PHP is parsing - it's the result of the parsing.[/QUOTE]
Didn't think of that.
Woo, my new monitor arrived!
I now have a dual monitor setup going on.
Any tips to get the best out of two screens? Like, apps and such?
[editline]2nd December 2011[/editline]
Oh, and they're of different resolutions. Primary is 1920x1080, secondary is 1280x1024.
[QUOTE=SGTNAPALM;33536175]Woo, my new monitor arrived!
I now have a dual monitor setup going on.
Any tips to get the best out of two screens? Like, apps and such?
[editline]2nd December 2011[/editline]
Oh, and they're of different resolutions. Primary is 1920x1080, secondary is 1280x1024.[/QUOTE]
Ultramon to extend the task bar. That's a life saver.
[editline]2nd December 2011[/editline]
(not literally)
Personally I use my second screen for Skype, steam chats and Spotify. I also have a twitter widget in case there's no windows blocking the way :v:
[QUOTE=kaze4159;33535627]Adblock Element Hider
[img]http://i.imgur.com/CscmK.png[/img]
[editline]2nd December 2011[/editline]
Only problem is now there's this giant fucking blank space[/QUOTE]
:D
My second screen is Alt Tab
:smug:
My second screen is that-acer-monitor-i-bought-for-very-cheap-which-some-of-you-guys-in-this-thread-might-remember
My second screen would be my 10.1 inch Asus Transformer
If the transfer speed through USB wasn't horrible
[QUOTE=kukiric;33536605]My second screen would be my 10.1 inch Asus Transformer
If the transfer speed through USB wasn't horrible[/QUOTE]
Ah, only 4 months and I can afford mine!
I don't know how expensive it will be in denmark, but I should almost be able to afford it when it comes out. The Prime, I mean.
[img]http://www.qwantz.com/comics/comic2-2107.png[/img]
The world needs more rap-battles involving CSS and document type definitions.
[video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video]
Skip to 1:55, it's just crap but
[b]WHO DARED TO STEAL GMANS GAME IDEA[/b]
[QUOTE=Goz3rr;33537590][video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video]
Skip to 1:55, it's just crap but
[b]WHO DARED TO STEAL GMANS GAME IDEA[/b][/QUOTE]
It's a card game. I highly doubt they have every one - from what I saw, they just have "AMD Phenom", whereas I have:
Phenom X4 9550
Phenom X4 9650
Phenom X4 9750
Phenom X4 9850
Phenom X4 9100e
Phenom X4 9150e
Phenom X4 9350e
Phenom X4 9450e
Phenom X4 9600B
Phenom X4 9750B
Phenom X4 9850 Black Edition
Phenom X4 9950 Black Edition
Phenom X4 9500
Phenom X4 9600
Phenom X4 9600 Black Edition
Phenom X3 8250e
Phenom X3 8450e
Phenom X3 8750 Black Edition
Phenom X3 8400
Phenom X3 8450
Phenom X3 8550
Phenom X3 8600
Phenom X3 8650
Phenom X3 8750
Phenom X3 8850
Phenom X3 8600B
Phenom X3 8750B
Plus, there's the whole open-world concept I'm working on, and the boss fights, and the GPUs/hard drives/RAM parts...
I'm not worried.
[QUOTE=Goz3rr;33537590][video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video]
Skip to 1:55, it's just crap but
[b]WHO DARED TO STEAL GMANS GAME IDEA[/b][/QUOTE]
How did he manage to fuck the quote that much up?
[editline]2nd December 2011[/editline]
For some reason the Medieval II Total War launcher likes to use precisely 25% of my CPU. At all times, unless I kill it.
[QUOTE=Goz3rr;33537590][video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video]
Skip to 1:55, it's just crap but
[b]WHO DARED TO STEAL GMANS GAME IDEA[/b][/QUOTE]
Perhaps the P4 can melt all of the other processor chips as a special move?
[editline]2nd December 2011[/editline]
Intel 80286 used Underclock!
It's super effective!
I had like a half hour chat with my manager about my performance with tech support.
So I'm moving to software production and testing, the two things I didn't really come to the job for. But, it's my fault. I've been late, if I don't know a solution I take too long to figure it out, and generally a bad employee by the sound of it. If I don't do well in this testing and production I'll probably be let go.
I simply hope not, so I can have a good reference when I eventually leave. I hope I can turn things around quickly and maybe change his mind.
[QUOTE=Brt5470;33538317]I had like a half hour chat with my manager about my performance with tech support.
So I'm moving to software production and testing, the two things I didn't really come to the job for. But, it's my fault. I've been late, if I don't know a solution I take too long to figure it out, and generally a bad employee by the sound of it. If I don't do well in this testing and production I'll probably be let go.
I simply hope not, so I can have a good reference when I eventually leave. I hope I can turn things around quickly and maybe change his mind.[/QUOTE]What happened actually?
It was sort of a, "I'm hearing bad things about your performance" talk.
[QUOTE=Brt5470;33538370]It was sort of a, "I'm hearing bad things about your performance" talk.[/QUOTE]Oh
Hope things go well for you, [img]http://www.facepunch.com/fp/ratings/heart.png[/img]
[editline]bla[/editline]
Yes, a 13 year old can be nice to people :v:
[QUOTE=tratzzz;33534998]So we have an ad in school.
Aids doesnt choose.
YOU do.
Written in Comic Sans.[/QUOTE]
mis kool?
My plan is to do my best to get my performance up and then when he finally tells me, "Alright, You're now finished with technical support. You're not fully on production and testing" I will ask how my recent performance has been and to see if I can stick with technical support.
Sorry, you need to Log In to post a reply to this thread.