Rol.ro romania online sql injection |

Most Commented

Loading....

Apocalipsa dupa Nemessis in (103 Visits)
Ce servicii de mail folositi? in (42 Visits)
This is the end in (28 Visits)
Hackersblog.org is now blog.rstcenter.com in (27 Visits)
Short news in (22 Visits)
La multi ani România, la multi ani românilor in (22 Visits)
Azi este ziua userilor hackersblog.org in (15 Visits)
Raportare vulnerabilitati in (14 Visits)
Inca o pierdere de timp in (14 Visits)
Update in (11 Visits)
Mi s-a furat id-ul de messenger/adresa e-mail. Ce sa fac? in (313 Visits)
Hi5.com coders read this in (37 Visits)
SMS scam (1) in (28 Visits)
Phishing Bancpost in (12 Visits)
Dezinformare sau proasta informare? in (11 Visits)
Si tentativele de phishing pot fi amuzante in (9 Visits)
Phishing Raiffeisen cu atasament html in (6 Visits)
Cum sa iti protejezi adresa e-mail si datele confidentiale din aceasta in (96 Visits)
[Utilitare] Suna gratis de pe internet sau de pe iPhone in (54 Visits)
Ce nu se invata la scoala - Tipuri si tehnici spam/Hi5 (4) in (49 Visits)
Despre CSRF, hi5.com, cum sa trisezi la concursuri s.a.m.d. in (42 Visits)
Ce nu se invata la scoala - (D)DOS (5) in (34 Visits)
Virusi in clipuri video [how to] in (33 Visits)
Ce nu se invata la scoala - Tipuri si tehnici spam/mail (2) in (29 Visits)
Ce nu se invata la scoala - Tipuri si tehnici spam (1) in (24 Visits)
Yahoo! redirects - a big issue (with video) in (14 Visits)
Ca musca in... in (12 Visits)
usa.kaspersky.com hacked ... full database acces , sql injection in (173 Visits)
Simpatie.ro, matrimoniale3x.ro, apetisant.ro, deliciu.ro , etc Sql injection in (113 Visits)
Yahoo! epic fail - permanent xss unleashed in (90 Visits)
Telegraph.co.uk hacked, sql injection in (66 Visits)
RedTube.com ... The Free Sex Video Community in (59 Visits)
Kaspersky Thailand hacked by TinKode in (48 Visits)
Conquiztador Hacked Again in (48 Visits)
Telegraph.co.uk hacked - when will they learn? in (43 Visits)
Simona Sensual si profilul ei de hi5 in (40 Visits)
F-Secure.com - SQL Injection + Cross Site Scripting in (39 Visits)
Wannabe Hackers [2] - cum sa faci un virus by sppy_hacker in (33 Visits)
Wannabe Hackers [1] - Cum sa hack-uiesti RapidShare-ul in (30 Visits)
Digital Photocopiers Loaded With Secrets in (26 Visits)
Hacker Uses XSS and Google Street View Data to Determine Physical Location in (16 Visits)
Oldies but goodies - Freedom Downtime - The Story of Kevin Mitnick in (11 Visits)
[Video] The History Of Hacking in (9 Visits)
OWASP Phishing demo in (9 Visits)
Christopher "moot" Poole: The case for anonymity online in (9 Visits)
Hope 2603 – Kevin Mitnick - Life a Computer Hacker – Revealed in (8 Visits)
Owasp5005 Part1 - New zero-day browser exploits - ClickJacking in (8 Visits)
Se poate sparge parola de Yahoo? in (346 Visits)
phpBB.ro hacked in (105 Visits)
Experiment social in (70 Visits)
Cand dorinta de afirmare depaseste granitele bunului simt - PaxNwo un leecher ordinar in (61 Visits)
Oare cum e pana la urma? in (57 Visits)
Concurs fara premii in (52 Visits)
"Hot" de id-uri messenger in (52 Visits)
Forumul Andreei Balan spart in (47 Visits)
Ce nu se invata la scoala – Vendetta (6) in (45 Visits)
Experiment social II - andimoisescu.ro in (44 Visits)

Top Users

Archives

Loading....

Rol.ro romania online sql injection

Posted by unu in English News

Posted on December 5th, 2008

Alt site cu sectiuni diverse si trafic mare este vulnerabil la sql injection ,fapt ce duce la posibilitatea accesarii din exterior a bazei sale de date. Ce este si mai grav ca la o interogare sql in loc de un singur rezultat (la cat este limitat deobicei),afiseaza pana in 10.000 ,lucru nepermis de profesionisti pt ca in cazul unui atac informatic s-ar usura foarte mult munca celui care extrage datele, ilegal .Plus faptul ca, vulnerabililitatea bazei de date a sectiunii respective ofera acces nelimitat la intreaga baza de date a serverului (adica si la bazele de date a celorlalte sectiunui) este deja comic. Din print screenuri se vede clar despre ce vorbesc.

La fel de usor se pot extrage si datele de logare a zeci de mii de utilizatori.

March 5, 2009 -- Ziua userilor – rol.ro
February 15, 2009 -- rol.ro again
February 23, 2011 -- Concurs fara premii
August 30, 2010 -- Deface (?!?) pe Cotidianul.ro
April 21, 2010 -- France2.fr – France4.fr – in asteptarea atacului?

5 Responses to “Rol.ro romania online sql injection”

add Says:
December 5th, 2008 at 4:38 pm
macar au parolele criptate…
add Says:
December 5th, 2008 at 4:41 pm
apropos. macar le repara dupa ce (sau inainte) apar la tien pe site?
unu Says:
December 5th, 2008 at 5:00 pm
“In clipa in care suntem anuntati de o vulnerabilitate, o vom raporta la administratorii site-urilor sau la vendorii produsului respectiv.Acest blog ….are un scop informativ si de prevenire/atentionare.” citez din Raporteaza vulnerabilitate,regulile hackersblog. Deci adminii sunt anuntati cu cateva zile inainte sa apara postul.Cand rezolva, repara e treaba lor, dar in general o fac rapid.
Darky Says:
December 6th, 2008 at 8:53 pm
Encriptate in md5?:D
chriscross Says:
December 8th, 2008 at 7:24 pm
pacat ca nu le-ati sters tot ce ati prins

Subscribe to our Feed

N/A Subscribers (Feedburner)

Entries RSS

Comments RSS

Related Posts

5 Responses to “Rol.ro romania online sql injection”

Leave a Reply