WebApp Sec mailing list archives
Re: RE: Re: about oracle sql injection
From: limor188 () walla co il
Date: 7 Dec 2005 11:32:58 -0000
hey thanks for your answer,by the way my problem is not a blind,because the server return error messages,but thier is a filter that denied the command:(union select) so i try to put a comment to bypass the signature,or make a url encoding,or pipe,but its still dosent working,so my question:there is more ways to bypass the signture (union select)?????????? if there is any guys that have some nice ideas to bypass the signature,its will be great thanks
Current thread:
- about oracle sql injection limor188 (Nov 29)
- Re: about oracle sql injection Mariusz Pękala (Nov 30)
- Re: about oracle sql injection Javier Fernandez-Sanguino (Dec 01)
- Re: about oracle sql injection Richard Moore (Dec 01)
- <Possible follow-ups>
- RE: about oracle sql injection LAROUCHE Francois (Dec 01)
- Re: about oracle sql injection Javier Fernandez-Sanguino (Dec 02)
- Re: Re: about oracle sql injection limor188 (Dec 05)
- RE: Re: about oracle sql injection LAROUCHE Francois (Dec 06)
- RE: RE: Re: about oracle sql injection LAROUCHE Francois (Dec 07)
- Re: RE: Re: about oracle sql injection limor188 (Dec 07)
- Re: about oracle sql injection Mariusz Pękala (Nov 30)