Please ask questions ONLY in this topic.

[fashizzlepop]

Yes, that is semi-spoilerish so please remove. I can tell you, right off the bat, that you are overcomplicating things a bit. Try to make it simpler and a little more general.

[kamalsharma18]

i got all the emails, but the status in my profile still says i am not through the mission.

do i need to mail them somewhere??

[Defience]

i got all the emails, but the status in my profile still says i am not through the mission.

do i need to mail them somewhere??

Reread the mission description.

[sigsegv]

hi everybody!
first of all thanks to the staff and all of you! i really enjoy these missions and im learning a lot.

i struggeled on mission 4 quite heavily but finally i know how to do this mission.

nonetheless im quite confused how these tables are setup, how they lookalike and how the sql statement interacts with these tables.

maybe someone could send me a pm and explain how these tables are setup.

thank you all!

[jsock-tre]

I completed the level, but i don't understand the logic of the query. Can someone please PM me to explain it, thanks

[hackthissitedotorg]

I got the email List. Now to whom i would send this list? Or do i need to email each one of them personally? That sounds absurd.

Ohh.. I got it.. . Just pay attention that who sent you the mail list request. It was really funny.

[DCircle]

Finally made it For everyone having problems like me (i hope it's not too spoilery) here some hints:

First of all you have to find a Spot, where to perform SQL-Injection. As others said before me: Learn about how SQL works, look for a query which uses GET-method and try inserting your own queries. A broken image means that you managed to manipulate the database but your query produced an error.

As you got access to a table of the database you need to "union" the information you need (Mailing list) with the table you have access to. Therefore you need two things: The name of the mailing list table and the number of columns in the table you have access to. To get the name, look carefully at occuring error messages - you can get useful information there (maybe more than just one name?).
Now use the Order-By trick to count columns. That's where i've been stuck for hours cause i really thought i'd need the column names and desperately tried to get them. So if you're stuck here, too, try this one: http://thehotfix.net/forums/index.php?/topic/25665-sql-injection-tutorial/

After this you should have any information needed to perform your sql-attack. Think carefully about the sql-commands which you're going to use. If you see a long list of broken images you're on the right track (even if there's nothing in the sourcecode). Make sure you are using the UNION ALL command and have the right number of nulls filled in. If you still don't manage to get the information from the mailing list, think carefully about what you need to extract the emails from the mailing list. Only the table name or maybe something else? How about the name of the column the adresses are stored in? Try to find it, use it and you should be able to union the adresses with the product list. And in the end you'll find the answer lies in the source of all evil

Good luck

Hope those hints are vague enough If it's still too spoilery please just edit and take my apology

[Vlander]

Ive been working on this challenge for a while and am still confused i have the commands for injection but is there a way you have to format the commands when you set it into the address bar instead of the text bar? sorry I'm just completely lost on this one...

[bandchicky314]

I'm sorry, but did anyone notice that the initial were *fap*?

[fashizzlepop]

Ive been working on this challenge for a while and am still confused i have the commands for injection but is there a way you have to format the commands when you set it into the address bar instead of the text bar? sorry I'm just completely lost on this one...

If you do enough reading on SQL injection you should be able to figure this out. If you have a specific question on the contents of the query, PM me.

I'm sorry, but did anyone notice that the initial were *fap*?

Nice catch.