Collaborate Disseminate
I am pretty curious, How someone can leave a backdoor in an application, In my opinion there isn’t a way, Cause the entry point of the requests is route file, You have to write code for route in order to put some code to exec… Continue reading Laravel : How to leave a backdoor
I used the metasploit module auxiliary/admin/mysql/mysql_enum for enumerating mysql db.
This is the text of results:
Allow Use of symlinks for Database Files: YES
What is symlinks for database files? can I access to anothe… Continue reading Linux symlink to database file
I am working on a site that has an online health and safety course where you buy x number of serials to use. 1 serial per candidate. We don’t store credit card details and payments are processed securely by a third party. At the moment we do collect/store the address of any sign-up in a mysql database.
Even though it is still quite a new site with fairly limited budget I, as the developer, am trying to make the site as secure as possible. I would like to remove the address/telephone numbers from the database so if there was an intrusion there is less and less for the perpetrator to attempt to steal. We don’t need the address/tel stored in the db for any of the functions to work and as it is a digital product we don’t need to send out to postal address. But we do want to keep the info and store locally if/when needed for marketing.
It’s easy enough to remove the address/tel from the DB and update the payment process so these details are emailed instead to my client, who could then copy and paste all addresses as they arrive into a local spreadsheet and delete the email. But as I have read, it is taboo to send plain text passwords etc via email.
So, would it be acceptable to email ‘addresses/telephone numbers’ after payment in plain text which my client could promptly transfer to a local spreadsheet? Would this be considered more secure than storing such info in a database (which potentially could always be compromised)? Or is there some other method one would recommend in this situation?
So a server is running a http service and is linked to a database, the parameters for db querying is set to ‘host: localhost’ that is supposed to refer to the same http server.
if yes (apparently) how does the front end use… Continue reading What is host: localhost on a web site [on hold]
I am testing a website that is exposing database credentials as …../config/config.ini through the URL, the config.ini contains plain text stating the following lines:
[DB]
db name ….
db server localhost
login …..
Passw… Continue reading Pentesting a web server [on hold]
As part of pentesting I am trying to access/hack a MySQL server using Kali Linux metasploit auxilary with mysql_enum module. But I unable to access it as access is denied.
Does anyone of you have any idea how to access the D… Continue reading How to access MySQL database if access is denied?
Currently in PHP (in the file /var/www/website.com/public_html/functions.php). I am connecting to the database like this:
function connect(){
$config = parse_ini_file(‘/var/www/website.com/db.ini’);
$con = mysqli_con… Continue reading How to securely connect to a database with PHP?
Your daily round-up of some of the other stories in the news Continue reading News in brief: D-Link vulnerabilities; SHA-1 woe; MySQL hacks
Recently spotted someone searching:
1 and 1 2 union select 0x6461726b31636f6465–
And a bunch of variations. What type of exploit is this and what does it attempt to do? I don’t believe I’m at any particular risk, but… Continue reading Someone searching "0x6461726b33636f6465" – what kind of exploit is this?
Recently when I was looking through some code which looks more or less like this:
$query = “call someProcedure(?,?,{$unsafeString})”;
Then there is some code where the list of arguments is prepared and after that, there i… Continue reading Is it possible to breach prepared statement and stored procedures with unsafe sql query string