well dude scan da sever first. to make sure is there any holes out there if so hav fun then
2009/3/7 Zang <[email protected]> > why not exploits ? > > 2009/3/7 zhuzhu <[email protected]> > > >> Hi all, >> Thanks for your replies. I have got the ip address and the server >> information through the load_file function of mysql. But I found that >> it was an intranet ip and the system is "Red Hat Enterprise Linux >> Server release 5". I don't know how to do next. Anyone have idears? >> >> On Mar 5, 1:09 pm, zhuzhu <[email protected]> wrote: >> > Hi all, >> > >> > These days I am trying to hack a web site with sql injection >> > weakness. It seems that the database and the web pages are hosted on >> > two different machines. I don't know how to get the webshell in this >> > case. Is there any way to get the ip address of the mysql server so >> > that I could do some further exploration? >> >> >> > > > > --~--~---------~--~----~------------~-------~--~----~ 要向邮件组发送邮件,请发到 [email protected] 要退订此邮件,请发邮件至 [email protected] -~----------~----~----~----~------~----~------~--~---
