Mircea Soaica

Recently one of the most famous job portals in Romania has been hacked because of unsecured SQL queries. This is because the programmer did not filter the ID from the url (GET method).

He probably wrote something like this :

<?php

//code…

$id = mysql_escape_string($_GET['id']);

$sql = “select * from some_table where id=$id”;

//execute query

//code

?>

As i’ve wrote in the first SQL Injection article this is a common mistake and a very big vulnerability.

My input could be :

www.somesite.com/index.php?id=33 UNION SELECT CHAR(60, 63, 112, 104, 112, 32, 47, 42, 32, 115,111, 109, 101, 32, 112, 104, 112, 32, 99,111, 100, 101, 32, 42, 47, 32, 63, 62) INTO  OUTFILE ‘/full/path/to/file.php’

This code writes “<?php /* some php code */ ?>” into the file file.php wich can be executed. Imagine what we could do (delete/copy/modify/add any file/database, send spam, phishing)  if we can plant an php file in the website’s root.

There are many examples but I think you’ve got the idea that something that seems to be of little importance can be very harmful.

I hope this article will open your eyes and you will stop making some stupid mistakes. This is not written for illegal purposes.

Have fun coding!

Share/Save

I needed a few days ago a very simple to use tabs plugin for wordpress an I ended coding it myself.

more »

Share/Save

eQuality Solutions is a young company founded on the desire to fullfill dreams and passions that could not be achieved anywhere else. We see it as a strong company because we believe in it, because we see how it unites us towards a common goal. For this purpose, the internal methodology of eQuality Solutions is based on a continuous selection of our employees and collaborators, such that we are proud to have resulted in a united, experienced, ingenious and unmatched team. [...]

more »

Share/Save

SQL injection is one of the most known method of hacking into a web application. If your application is well protected against SQL injection there are very small chances it will be hacked.

more »

Share/Save

A few days ago I needed a tooltip script to use on one of my projects and had a hard time finding a cool one. I decided to share the links for the scripts i found.
more »

Share/Save

What is PHP?

In 1995 PHP started out as Personal Home Page, but the name was changed a few years later because the name did not sound very professional but more like a tool for hibbyists. The name is now officially PHP: Hypertext Preprocessor.

PHP is an open-source server-side scripting language wich runs on a web server, unlike Javascript wich runs on the client side (browser). This means that when an echo “hello wold”; code is executed on the server, your browser recives only the hello world statement.

Although PHP supports Object oriented programming, it is not an object-oriented programming language.

more »

Share/Save

A few days ago the boys from Webdesign4U released a new great website : Clevertoys.

more »

Share/Save