Pages

Archives

Mobile Upgrade...?Hearing Aid Compatible Mobiles?What Do You Think Is A Good Garrys Mod Map Maker System.?How Easy Is It To Access Intenet On The Iphone Or Ipod Touch?Why Wont My Oblivion Mod Show Up In The Game?What Is The Best Way To Learn About Hardware?Javascript Injections?What Is The Linux Command To Log Users Off The System?Kaspersky Is So Much Memory In My Pc. How Do I Reduce The Momory Usage Of This Antivirus?Does Anyone Know How I Can Hack My Own Email?How To Protect Hack When Use Yahoo Messenger?What Are Federal And Ohio Laws Concerning Internet Hacking Of Personal Emails?How Much Is 1gb Of Data?I've Just Bought A K800i And Can't Get On The Internet, Any Ideas?How Do You Convert Mod Video Files To Wmv?How Can I Put My Iphone On A Different Computer Without Losing All My Apps And Songs?Is It Possible To Become A Mod On Club Penguin?What Is The Difference Between Hardware Encoding And Software Encoding?What Would You Call Me?How Do You Install A Program In Suse Linux?How Easy Is It To Hack In To An Email Account, Facebook Or A Cell Phone?Is It Possible For People To Hack Into My Yahoo Account Through Yahoo Chat?Is A Psp Worth Buying With Intention Of Hacking It?My Mobile Is Locked To 3,anyone Got Any Ideas How To Unlock It?Setting Up Windows Messenger On Blackberry Storm?Is It Illegal If I Start A Website In The Usa And Sell Mod Chips?How Do I Buy Iphone 3g From Friend And Get It The Plan Switched To My Account?How To Incorporate The "mod/new Wave" Look?How To Develop A Device Driver For My Hardware?Help Validating Forms?Linux File Permission For Other User Other Than Root?How Do I Change The Settings On My Norton Antivirus 2008 Firewall To Allow Limewire?What Information Was Revealed In Sarah Palin Hacked Email?Hack My Yahoo Password?Is There Is Specific Website On Yahoo Or Another Website To Report Suspicious Hacking?'subscribe To Packet Data'?Best Mobile Company For Travelling?Can Someone Give Me The Steps On How To Download The Bigfoot Mod For Gta San Andreas?How Can I Sync My Iphone To My New Computer Without Losing All The Applications That I've Bought?How Do I Get A Map Mod File To Work?How Do You Enable Wireless Hardware On A Fujitsu Tablet?Is A Hakin9 Magazine Worth $50-70?How To View Linux Files And Directory In Windows.?How Do I Stop Antivirus 2009 From Popping Up On My Computer. It Is Not Downloaded And I Do Not Want To Purcha?Where Do I Report A Site Abuse That Shows People How To Hack Email Accounts?Is This Really Possible To Hack Yahoo Mail?How Do I Hack And Monitor The Bastards Who Are Hacking My Wireless Wifi?Help Of To Unlock Sony Ericsson K300i?What Phone Should I Buy?How Do I Mod The Witcher Enhanced Edition?How Do I Authorize A Iphone 3g I Bought Used On Ebay?Is There A Downloadable Multiplayer Mod For Grand Theft Auto San Andreas Second Version On Pc?What Is The Future Of Hardware Next 4 To 10 Years?How He Compress That Much...?I Am Trying To Install Linux And I Have The Cd For Ubuntu But What Do I Do In The Partition Part?Hotmail , Yahoo Or Gmail, Which Is The Most Easiest Accessible Email To Hack ? And Which Is More Secure??Someone Has Hacked My Yahoo Email Account. How Do I Get It Deleted?What Is The Difference Between Phishing And Hacking?I Bought A Motorola Kzr1 Cell From Dubai And Its Not Reading The Sim Any Ideas?I Have A Sony Ericsson K800i, But It Wont Send Or Recieve Texts, It Does However Make Calls! Any Ideas?How Do You Add A Mod To Kotor?How Much Different Is It To Set Up & Activate A Used Iphone Than A New One?How Do I Stop Garrys Mod From Crashing?What Is The Difference Between Hardware Backward Compatibility And Software Ones In The Ps3?I Need Form Validation Help!?I Have Created An Application For Linux.i Want To Be Executed As Root.?What Is The Best Antivirus Program Out Right Now?Does Any One Know If Yahoo Is Working On The Servers Or Did Sum1 Hack Yahoo?What Is The Best Way To School An Arab Whilst Hacking?I'm Getting A New Phone, Any Ideas Of What Type ?Can't Download Yahoo Go?Where Can You Buy A Ps2 Or Ps3 Playstation Console With Mod Chip Installed?Does The Iphone Have The Capability To Function As A Modem From My Home Pc?Is There Any Way To Mod A Dial Up Modem To Make It Faster?How Do You Download The Drivers Of All Hardware Installed On Your Pc Without Hardware Drivers?What Is Sql Injection?????Linux Installation ?How Do Search To See If My Bf Is On Any Dating Site? Or Is There Any Way To Hack Into Email At Work?Is Someone Trying To Hack My Yahoo Account?How Can I Stop My Computer Mouse From Moving By Itself? It Is Not An Optical Mouse, Is Some One Hacking My Com?Premium Rate Text Drain My Mobile Phone Credit - Help!?My Boyfriend Isnt Receiving My Texts, Help?!?!?How To Import Guitar Hero Songs On Alarian Mod For Frets On Fire?How Can You Fix A Iphone With A Broken Sleep Button?Where Can I Get Mods For Gta San Andreas And Do I Need To Install A "mod Installer Program" Before I Download?Where Can I Find Computer Hardware That Is Destined For Recycling?Media Player For Linux That Can Play Video_ts Files (aka. Dvd Root Directory File Structure)?How Can I Get Rid Of The Norton Antivirus Expired Subscription Pop-up?Hey Does Anyone Know How To Hack A Yahoo Password My Mom Lost Hers Can You Please Help Us Thanks?Why Does My Dog Start Hacking After He Runs And Gets All Excited?Sms Pack For Messaging Nationally Within India?Is There A Ps3 Mod Chip Out That Will Play Pirated Games?Does The Iphone Require A Phone Card Or Does It Need A Company Plan?How Do You Add The Bulma Character To Eighter, Garys Mod Or Half Life 2?How Do I Detect New Hardware On Windows Vista?Help With This Query?How Do You Change Your Screen Size Using A Linux Command?How Can I Find Out If Someone Has Hacked My Email?How Do You Hack Into Yahoo Email???How To Stop A Person From Hacking A Piczo Website?Hi! What Happened To The Early Cellphone Companies In India ? Eg: Essar, Maxtouch, Jtm, Escotel, Hexacom Etc?Why Is It So Hard To Get A Real Person On The Phone These Days?Is It Possible To Mod A Fake Ipod Or Something?How Long Does An Iphone 3g Battery Last Before Needing Charge?How Do I Convert .mod Files From My Pc To A File That Is Compatible With My Imac?Where Can I Fin Hardware To Hang A Curtain On A Glass Panel That Is Approx. 6" Wide By 3' Long?Mysql_real_escape_string?How To Give Perticular Command Permissions In Linux For The Specific Users ( Not For Root ) ?My Antivirus Keeps Popping Up And Asking Me What To Do About The Exact Same Virus?If Sarah Palin Had Used Her Work Email, Would It Have Been Hacked?How Do I Get Shay Min In Pokemon Diamond W/o Hacking Cheating Or Anything Ralated To That?Which Is The Best Network In India ?Anyone Having Problems Receiving Texts On Vodafone?How Do You Seriously Mod An Object For The Sims2!?How Do You Keep The Songs In Your Iphone When You Bought A New Computer?How To Set Up A Wireless Connection On Pc Without Any Hardware Devices, Is This Possible?Http://zeetr.net/personal/code…How Can I Get Into Different File Structure Like Etc,mnt From The Text Mode In Linux And Now Im In Root?Can You Tell Me How To Get Antivirus Pro 2009 Off My Computer?Hack From Yahoo Messenger?What Hacking Tools Can I Use To Hack Megaman Battle Network Games?Vodafone Ie?I M A Engineering Student, Age 20 I Have A Lot Of Tv Commercial Ad Ideas,how Can I Utilize Them..plz...help?Possible To Add A Mod To My Computer To Play Xbox 360 Or Ps3 Games?Does The Iphone Work Like An Ipod Touch After The Subscription Is Expired?How Do I Get Privileges Where I Can Add And Remove Hardware?

Pages

 

June 2009
M T W T F S S
« May    
1234567
891011121314
15161718192021
22232425262728
2930  

Recent Comments

Google Analysis


0
Unique
Visitors
Powered By
08 Jun

Help With This Query?

Author: admin  //  Category: SQl Injection

I have the following query for mysql but it keeps giving me an error and I am not sure why
“SELECT pd.products_name, pd.products_description, pd.products_url, p.products_quantity, p.price,p.products_weight,p.products_mod… from products_description pd, products d, where p.products=
‘{$_GET['id']}’
and pd.products_id=
‘p.products_id’ ”
I realize that I am not gaurding against the SQL injection I was plugging value in for testing.
the problem is in the where statement
1064 - You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ‘where p.products=’8574′ and pd.products_id=’p.products_id” at line 1
Can someone help please?

Tags: , , ,

3 Responses to “Help With This Query?”

  1. Jeff Alexander Says:
    June 8th, 2009 at 9:27 pm

    The problem is in the from clause:
    “from products_description pd, products d,”
    Remove the comma after “products d,”
    With the comma, the parser expects another table name whereas this query begins the “where” clause.

  2. Colanth Says:
    June 9th, 2009 at 1:37 am

    1) Unless the ID of the product is literally “p.products_id”, take it put of the single quotes. (pd.products_id, a numeric, and ‘p.products_id’, a char field, are most likely never equal.)
    2) Is p.products a char field or a numeric field? If numeric, take 8574 out of single quotes. (And, when you substitute your variable, keep it out of single quotes too - it’s the type of field that determines whether the value - literal or variable - gets quoted.)

  3. emb3rx Says:
    June 9th, 2009 at 4:41 am

    If this is being run in PHP, remember that you have to ‘terminate’ the literal string and then concatenate the variables, like so:
    ‘literal val ‘ .variable. ‘ more literal’
    It looks like you’re trying to get PHP variables into the SQL query at Runtime, like {$_GET['id']} for instance.
    Another thing to look at, you’re declaring at the end there that you want pd.products_id to equal the literal string ‘p.products_id’
    All of this answer is inherently void if there’s something about MySQL that I don’t understand, though it would have to be fundamentally different from most other versions of SQL in order to actually process queries in such a different way.

Leave a Reply