SQL Injection in UPDATE query

Discuss the many weaknesses of browser security and ways to mitigate the threat

SQL Injection in UPDATE query

Post by spliter on Sun Jul 19, 2009 12:30 am
([msg=26966]see SQL Injection in UPDATE query[/msg])

I have been studying MySQL INjections and Ive been wondering, how would a hacker take advantage of an UPDATE query and execute malicious codes? Most of the articles Ive read around here are all done in SELECT query but never in other queries.

THANKS!!
spliter
New User
New User
 
Posts: 2
Joined: Sun Jul 19, 2009 12:14 am
Blog: View Blog (0)


Re: SQL Injection in UPDATE query

Post by mischief on Sun Jul 19, 2009 7:12 pm
([msg=26987]see Re: SQL Injection in UPDATE query[/msg])

http://marc.info/?l=bugtraq&m=111885974124936&w=2

if you read there you can see that someone could insert a rating of their own into the mambo CMS voting system. so, for example, if you were playing a game that used SQL statements that were invalidated and injectable by the user, for example the bonus given to skills when you level up, you could increase your levels several times instead of just one, or however many points it increases.
The whole secret of existence is to have no fear. Never fear what will become of you, depend on no one. Only the moment you reject all help are you freed.
--Buddha
User avatar
mischief
Poster
Poster
 
Posts: 355
Joined: Wed Jan 07, 2009 4:16 pm
Blog: View Blog (0)


Re: SQL Injection in UPDATE query

Post by spliter on Sun Jul 19, 2009 9:38 pm
([msg=26997]see Re: SQL Injection in UPDATE query[/msg])

hmm, but then one could only edit the value of the columns that are already selected in the query? For example is a hacker able to use a query like "UPDATE people SET name='blah' WHERE age='".$age."'" to update, select, or delete a column located in another table?
spliter
New User
New User
 
Posts: 2
Joined: Sun Jul 19, 2009 12:14 am
Blog: View Blog (0)



Return to Web

Who is online

Users browsing this forum: No registered users and 0 guests