• CIPWTTKT&GC V0x0F (v15): Scoot and Deeps Drama Diaries
    25,625 replies, posted
I just got thinking, can you like, store PHP in SQL and then call it and run it? Because the inventory database I'm working doesn't check dick, so if you inject at that point shit into the item database, when it gets read from the database, would the PHP run, since it's read onto the page while PHP is parsing through the crap? PHP starts parsing page MySQL library loads shit onto page that PHP uses Our PHP gets loaded onto page, stop the normal execution and run our own shit?
[QUOTE=Samuka97;33535650] I still remember the shitload of videos everyone uploaded bitching when YouTube changed their video format to 16:9[/QUOTE] [video=youtube;oALIJQnaDDA]http://www.youtube.com/watch?v=oALIJQnaDDA[/video] Ashens did one of my favorites
[QUOTE=nikomo;33535696]I just got thinking, can you like, store PHP in SQL and then call it and run it? Because the inventory database I'm working doesn't check dick, so if you inject at that point shit into the item database, when it gets read from the database, would the PHP run, since it's read onto the page while PHP is parsing through the crap? PHP starts parsing page MySQL library loads shit onto page that PHP uses Our PHP gets loaded onto page, stop the normal execution and run our own shit?[/QUOTE] you're asking this in the wrong place, there is a web development section that I never see you in :v:
[QUOTE=nikomo;33535696]I just got thinking, can you like, store PHP in SQL and then call it and run it? Because the inventory database I'm working doesn't check dick, so if you inject at that point shit into the item database, when it gets read from the database, would the PHP run, since it's read onto the page while PHP is parsing through the crap? PHP starts parsing page MySQL library loads shit onto page that PHP uses Our PHP gets loaded onto page, stop the normal execution and run our own shit?[/QUOTE] Possible, yes. But it will most likely just break the code, unless they know how your php works.
[QUOTE=mobrockers2;33535717]Possible, yes. But it will most likely just break the code, unless they know how your php works.[/QUOTE] You could just call ?> and <? phpinfo(); ?> probably just to get some basic information from the target. Problem is, that'd be kind of a suicidal attack, since depending on what order the database is read, if you tried to add a new "item" to the database, your earlier shit would stop the reading of the database before the later one would get read.
[QUOTE=nikomo;33535749]You could just call ?> and <? phpinfo(); ?> probably just to get some basic information from the target. Problem is, that'd be kind of a suicidal attack, since depending on what order the database is read, if you tried to add a new "item" to the database, your earlier shit would stop the reading of the database before the later one would get read.[/QUOTE] Don't use short tags. Also it doesn't matter if it would work or not. You don't want people to enter stuff into your database that isn't supposed to be there, ever. Restrict it so that they can only enter exactly what is supposed to be in there, nothing else.
Good thing it already has shit to replace a lot of common crap that would never be used in the input but would be used in the attack. Actually, the only vulnerable part of the code I found is the shit I wrote.
[QUOTE=Samuka97;33535650] I still remember the shitload of videos everyone uploaded bitching when YouTube changed their video format to 16:9[/QUOTE] I don't see why anyone would NOT want this.
[QUOTE=nikomo;33535696]would the PHP run, since it's read onto the page while PHP is parsing through the crap?[/QUOTE] If you aren't running the page through eval, it won't run. It can't run exactly because it's read to the page while PHP is parsing - it's the result of the parsing.
[QUOTE=esalaka;33536046]If you aren't running the page through eval, it won't run. It can't run exactly because it's read to the page while PHP is parsing - it's the result of the parsing.[/QUOTE] Didn't think of that.
Woo, my new monitor arrived! I now have a dual monitor setup going on. Any tips to get the best out of two screens? Like, apps and such? [editline]2nd December 2011[/editline] Oh, and they're of different resolutions. Primary is 1920x1080, secondary is 1280x1024.
[QUOTE=SGTNAPALM;33536175]Woo, my new monitor arrived! I now have a dual monitor setup going on. Any tips to get the best out of two screens? Like, apps and such? [editline]2nd December 2011[/editline] Oh, and they're of different resolutions. Primary is 1920x1080, secondary is 1280x1024.[/QUOTE] Ultramon to extend the task bar. That's a life saver. [editline]2nd December 2011[/editline] (not literally)
Personally I use my second screen for Skype, steam chats and Spotify. I also have a twitter widget in case there's no windows blocking the way :v:
[QUOTE=kaze4159;33535627]Adblock Element Hider [img]http://i.imgur.com/CscmK.png[/img] [editline]2nd December 2011[/editline] Only problem is now there's this giant fucking blank space[/QUOTE] :D
My second screen is Alt Tab :smug:
My second screen is that-acer-monitor-i-bought-for-very-cheap-which-some-of-you-guys-in-this-thread-might-remember
My second screen would be my 10.1 inch Asus Transformer If the transfer speed through USB wasn't horrible
[QUOTE=kukiric;33536605]My second screen would be my 10.1 inch Asus Transformer If the transfer speed through USB wasn't horrible[/QUOTE] Ah, only 4 months and I can afford mine!
I don't know how expensive it will be in denmark, but I should almost be able to afford it when it comes out. The Prime, I mean.
[img]http://www.qwantz.com/comics/comic2-2107.png[/img] The world needs more rap-battles involving CSS and document type definitions.
[video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video] Skip to 1:55, it's just crap but [b]WHO DARED TO STEAL GMANS GAME IDEA[/b]
[QUOTE=Goz3rr;33537590][video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video] Skip to 1:55, it's just crap but [b]WHO DARED TO STEAL GMANS GAME IDEA[/b][/QUOTE] It's a card game. I highly doubt they have every one - from what I saw, they just have "AMD Phenom", whereas I have: Phenom X4 9550 Phenom X4 9650 Phenom X4 9750 Phenom X4 9850 Phenom X4 9100e Phenom X4 9150e Phenom X4 9350e Phenom X4 9450e Phenom X4 9600B Phenom X4 9750B Phenom X4 9850 Black Edition Phenom X4 9950 Black Edition Phenom X4 9500 Phenom X4 9600 Phenom X4 9600 Black Edition Phenom X3 8250e Phenom X3 8450e Phenom X3 8750 Black Edition Phenom X3 8400 Phenom X3 8450 Phenom X3 8550 Phenom X3 8600 Phenom X3 8650 Phenom X3 8750 Phenom X3 8850 Phenom X3 8600B Phenom X3 8750B Plus, there's the whole open-world concept I'm working on, and the boss fights, and the GPUs/hard drives/RAM parts... I'm not worried.
[QUOTE=Goz3rr;33537590][video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video] Skip to 1:55, it's just crap but [b]WHO DARED TO STEAL GMANS GAME IDEA[/b][/QUOTE] How did he manage to fuck the quote that much up? [editline]2nd December 2011[/editline] For some reason the Medieval II Total War launcher likes to use precisely 25% of my CPU. At all times, unless I kill it.
[QUOTE=Goz3rr;33537590][video=youtube;NiHjUFJTOSk]http://www.youtube.com/watch?v=NiHjUFJTOSk[/video] Skip to 1:55, it's just crap but [b]WHO DARED TO STEAL GMANS GAME IDEA[/b][/QUOTE] Perhaps the P4 can melt all of the other processor chips as a special move? [editline]2nd December 2011[/editline] Intel 80286 used Underclock! It's super effective!
I had like a half hour chat with my manager about my performance with tech support. So I'm moving to software production and testing, the two things I didn't really come to the job for. But, it's my fault. I've been late, if I don't know a solution I take too long to figure it out, and generally a bad employee by the sound of it. If I don't do well in this testing and production I'll probably be let go. I simply hope not, so I can have a good reference when I eventually leave. I hope I can turn things around quickly and maybe change his mind.
[QUOTE=Brt5470;33538317]I had like a half hour chat with my manager about my performance with tech support. So I'm moving to software production and testing, the two things I didn't really come to the job for. But, it's my fault. I've been late, if I don't know a solution I take too long to figure it out, and generally a bad employee by the sound of it. If I don't do well in this testing and production I'll probably be let go. I simply hope not, so I can have a good reference when I eventually leave. I hope I can turn things around quickly and maybe change his mind.[/QUOTE]What happened actually?
It was sort of a, "I'm hearing bad things about your performance" talk.
[QUOTE=Brt5470;33538370]It was sort of a, "I'm hearing bad things about your performance" talk.[/QUOTE]Oh Hope things go well for you, [img]http://www.facepunch.com/fp/ratings/heart.png[/img] [editline]bla[/editline] Yes, a 13 year old can be nice to people :v:
[QUOTE=tratzzz;33534998]So we have an ad in school. Aids doesnt choose. YOU do. Written in Comic Sans.[/QUOTE] mis kool?
My plan is to do my best to get my performance up and then when he finally tells me, "Alright, You're now finished with technical support. You're not fully on production and testing" I will ask how my recent performance has been and to see if I can stick with technical support.
Sorry, you need to Log In to post a reply to this thread.