Anti Sql Inject With 0.8 and others Webs

PHP Code:

<?php $ip = $_SERVER['REMOTE_ADDR']; $time = date("l dS of F Y h:i:s A"); $script = $_SERVER[PATH_TRANSLATED]; $fp = fopen ("D:/MuServer/[WEB]SQL_Injection.txt", "a+"); $sql_inject_1 = array(";","'","%",'"'); #Whoth need replace $sql_inject_2 = array("", "","","""); #To wont replace $GET_KEY = array_keys($_GET); #array keys from $_GET $POST_KEY = array_keys($_POST); #array keys from $_POST $COOKIE_KEY = array_keys($_COOKIE); #array keys from $_COOKIE /*begin clear $_GET */ for($i=0;$i<count($GET_KEY);$i++) { $real_get[$i] = $_GET[$GET_KEY[$i]]; $_GET[$GET_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_GET[$GET_KEY[$i]])); if($real_get[$i] != $_GET[$GET_KEY[$i]]) { fwrite ($fp, "IP: $ip\r\n"); fwrite ($fp, "Method: GET\r\n"); fwrite ($fp, "Value: $real_get[$i]\r\n"); fwrite ($fp, "Script: $script\r\n"); fwrite ($fp, "Time: $time\r\n"); fwrite ($fp, "==================================\r\n"); } } /*end clear $_GET */ /*begin clear $_POST */ for($i=0;$i<count($POST_KEY);$i++) { $real_post[$i] = $_POST[$POST_KEY[$i]]; $_POST[$POST_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_POST[$POST_KEY[$i]])); if($real_post[$i] != $_POST[$POST_KEY[$i]]) { fwrite ($fp, "IP: $ip\r\n"); fwrite ($fp, "Method: POST\r\n"); fwrite ($fp, "Value: $real_post[$i]\r\n"); fwrite ($fp, "Script: $script\r\n"); fwrite ($fp, "Time: $time\r\n"); fwrite ($fp, "==================================\r\n"); } } /*end clear $_POST */ /*begin clear $_COOKIE */ for($i=0;$i<count($COOKIE_KEY);$i++) { $real_cookie[$i] = $_COOKIE[$COOKIE_KEY[$i]]; $_COOKIE[$COOKIE_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_COOKIE[$COOKIE_KEY[$i]])); if($real_cookie[$i] != $_COOKIE[$COOKIE_KEY[$i]]) { fwrite ($fp, "IP: $ip\r\n"); fwrite ($fp, "Method: COOKIE\r\n"); fwrite ($fp, "Value: $real_cookie[$i]\r\n"); fwrite ($fp, "Script: $script\r\n"); fwrite ($fp, "Time: $time\r\n"); fwrite ($fp, "==================================\r\n"); } } /*end clear $_COOKIE */ fclose ($fp); ?>

When is instaled MuWeb 0.8
delete Install Folder and open Config.php
and put this script before

<?

thx
tested and work 100%

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

and no one can hack your web or ??

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

I use a similar with not MuWeb.

good script

naseto, with this script stop hacks to server. ^^

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Good script, appreciate it.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Brilliant script - works perfect!
Thank you for posting :)

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

i got thi error :
Warning: fopen(D:/MuServer/[WEB]SQL_Injection.txt) [function.fopen]: failed to open stream: Permission denied in C:\xampp\xampplite\htdocs\config.php on line 5

Warning: fclose(): supplied argument is not a valid stream resource in C:\xampp\xampplite\htdocs\config.php on line 61
And all Letters get bigger..

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

ops i fine now .... i have forgot to do the folder..
Sry for this and i have 1 more question what helps this script The Web The Server .. Etc.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Stop F**** "hackers"
and stop Sql inject !
:D

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

if this works ... it's a very good job and script ... cheers

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

work 100%

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Yeah!!
is perfect work :)
Thank you so much!!

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

np:D

Code:

Time: Wednesday 12th 2008f November 2008 04:22:21 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\' Script: Time: Wednesday 12th 2008f November 2008 04:32:06 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\'\" Script: Time: Wednesday 12th 2008f November 2008 04:32:06 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:06 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:06 PM ================================== IP: 86.106.97.65 Method: POST Value: %27 Script: Time: Wednesday 12th 2008f November 2008 04:32:06 PM ================================== IP: 86.106.97.65 Method: POST Value: \0\' Script: Time: Wednesday 12th 2008f November 2008 04:32:06 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:32:06 PM ================================== IP: 86.106.97.65 Method: POST Value: \0\' Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\'\" Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\' Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\" Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:07 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:32:08 PM ================================== IP: 86.106.97.65 Method: POST Value: %27 Script: Time: Wednesday 12th 2008f November 2008 04:32:08 PM ================================== IP: 86.106.97.65 Method: POST Value: \0\' Script: Time: Wednesday 12th 2008f November 2008 04:32:08 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\'\" Script: Time: Wednesday 12th 2008f November 2008 04:32:09 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:09 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:09 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\' Script: Time: Wednesday 12th 2008f November 2008 04:32:09 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\" Script: Time: Wednesday 12th 2008f November 2008 04:32:09 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:09 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:09 PM ================================== IP: 86.106.97.65 Method: POST Value: %27 Script: Time: Wednesday 12th 2008f November 2008 04:32:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\" Script: Time: Wednesday 12th 2008f November 2008 04:32:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:32:11 PM ================================== IP: 86.106.97.65 Method: POST Value: %27 Script: Time: Wednesday 12th 2008f November 2008 04:32:11 PM ================================== IP: 86.106.97.65 Method: POST Value: \0\' Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\'\" Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: POST Value: acunetix\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\' Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\" Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:32:12 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:32:13 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:32:13 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: %27 Script: Time: Wednesday 12th 2008f November 2008 04:32:13 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: %27 Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \0\' Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \0\' Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: acunetix\'\" Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: acunetix\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: acunetix\'\" Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: acunetix\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\' Script: Time: Wednesday 12th 2008f November 2008 04:32:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\' Script: Time: Wednesday 12th 2008f November 2008 04:32:15 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:32:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\" Script: Time: Wednesday 12th 2008f November 2008 04:32:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\" Script: Time: Wednesday 12th 2008f November 2008 04:32:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\&quot Script: Time: Wednesday 12th 2008f November 2008 04:32:15 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir& Script: Time: Wednesday 12th 2008f November 2008 04:32:19 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir&amp Script: Time: Wednesday 12th 2008f November 2008 04:32:19 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir&ampamp Script: Time: Wednesday 12th 2008f November 2008 04:32:19 PM ================================== IP: 86.106.97.65 Method: POST Value: ;dir Script: Time: Wednesday 12th 2008f November 2008 04:32:19 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir Script: Time: Wednesday 12th 2008f November 2008 04:32:19 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:19 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:19 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: <dir Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir& Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir&amp Script: Time: Wednesday 12th 2008f November 2008 04:32:20 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir&ampamp Script: Time: Wednesday 12th 2008f November 2008 04:32:21 PM ================================== IP: 86.106.97.65 Method: POST Value: ;dir Script: Time: Wednesday 12th 2008f November 2008 04:32:21 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir Script: Time: Wednesday 12th 2008f November 2008 04:32:21 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:21 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:21 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir& Script: Time: Wednesday 12th 2008f November 2008 04:32:22 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir&amp Script: Time: Wednesday 12th 2008f November 2008 04:32:22 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir&ampamp Script: Time: Wednesday 12th 2008f November 2008 04:32:22 PM ================================== IP: 86.106.97.65 Method: POST Value: <dir Script: Time: Wednesday 12th 2008f November 2008 04:32:22 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:22 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:22 PM ================================== IP: 86.106.97.65 Method: POST Value: ;dir Script: Time: Wednesday 12th 2008f November 2008 04:32:25 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir Script: Time: Wednesday 12th 2008f November 2008 04:32:25 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:25 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:25 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &dir& Script: Time: Wednesday 12th 2008f November 2008 04:32:26 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ampdir&amp Script: Time: Wednesday 12th 2008f November 2008 04:32:26 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &dir& Script: Time: Wednesday 12th 2008f November 2008 04:32:26 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ampdir&amp Script: Time: Wednesday 12th 2008f November 2008 04:32:26 PM ================================== IP: 86.106.97.65 Method: POST Value: <dir Script: Time: Wednesday 12th 2008f November 2008 04:32:26 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:26 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:26 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: ;dir Script: Time: Wednesday 12th 2008f November 2008 04:32:27 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: ;dir Script: Time: Wednesday 12th 2008f November 2008 04:32:27 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &dir Script: Time: Wednesday 12th 2008f November 2008 04:32:27 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:27 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &dir Script: Time: Wednesday 12th 2008f November 2008 04:32:27 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ampdir Script: Time: Wednesday 12th 2008f November 2008 04:32:27 PM ================================== IP: 86.106.97.65 Method: POST Value: &dir& Script: Time: Wednesday 12th 2008f November 2008 04:32:28 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampdir&amp Script: Time: Wednesday 12th 2008f November 2008 04:32:28 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampampdir&ampamp Script: Time: Wednesday 12th 2008f November 2008 04:32:28 PM ================================== IP: 86.106.97.65 Method: POST Value: ;dir Script: Time: Wednesday 12th 2008f November 2008 04:32:28 PM ================================== IP: 86.106.97.65 Method: POST Value: <dir Script: Time: Wednesday 12th 2008f November 2008 04:32:28 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:28 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:29 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: <dir Script: Time: Wednesday 12th 2008f November 2008 04:32:30 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:30 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: <dir Script: Time: Wednesday 12th 2008f November 2008 04:32:30 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ltdir Script: Time: Wednesday 12th 2008f November 2008 04:32:30 PM ================================== IP: 86.106.97.65 Method: POST Value: <..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:02 PM ================================== IP: 86.106.97.65 Method: POST Value: &lt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:02 PM ================================== IP: 86.106.97.65 Method: POST Value: &amplt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:02 PM ================================== IP: 86.106.97.65 Method: POST Value: <..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:10 PM ================================== IP: 86.106.97.65 Method: POST Value: &lt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:10 PM ================================== IP: 86.106.97.65 Method: POST Value: &amplt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:11 PM ================================== IP: 86.106.97.65 Method: POST Value: <..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:11 PM ================================== IP: 86.106.97.65 Method: POST Value: &lt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:12 PM ================================== IP: 86.106.97.65 Method: POST Value: &amplt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:12 PM ================================== IP: 86.106.97.65 Method: POST Value: <..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:12 PM ================================== IP: 86.106.97.65 Method: POST Value: &lt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:13 PM ================================== IP: 86.106.97.65 Method: POST Value: &amplt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:13 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: <..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:16 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &lt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:16 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: <..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:16 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &lt..\\..\\..\\..\\..\\..\\..\\..\\boot.ini Script: Time: Wednesday 12th 2008f November 2008 04:33:16 PM ================================== IP: 86.106.97.65 Method: POST Value: printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \";printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \&quotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \&ampquotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:10 PM ================================== IP: 86.106.97.65 Method: POST Value: ;printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:10 PM ================================== IP: 86.106.97.65 Method: POST Value: printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \';printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:10 PM ================================== IP: 86.106.97.65 Method: POST Value: \";printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:11 PM ================================== IP: 86.106.97.65 Method: POST Value: \&quotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:11 PM ================================== IP: 86.106.97.65 Method: POST Value: \&ampquotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:11 PM ================================== IP: 86.106.97.65 Method: POST Value: printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:12 PM ================================== IP: 86.106.97.65 Method: POST Value: ;printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:12 PM ================================== IP: 86.106.97.65 Method: POST Value: \";printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:13 PM ================================== IP: 86.106.97.65 Method: POST Value: \&quotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:13 PM ================================== IP: 86.106.97.65 Method: POST Value: \&ampquotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:13 PM ================================== IP: 86.106.97.65 Method: POST Value: \';printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:13 PM ================================== IP: 86.106.97.65 Method: POST Value: \';printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:13 PM ================================== IP: 86.106.97.65 Method: POST Value: ;printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:14 PM ================================== IP: 86.106.97.65 Method: POST Value: \';printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:14 PM ================================== IP: 86.106.97.65 Method: POST Value: \";printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:14 PM ================================== IP: 86.106.97.65 Method: POST Value: \&quotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:14 PM ================================== IP: 86.106.97.65 Method: POST Value: \&ampquotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: ;printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:14 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: ;printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \';printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \';printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:15 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \";printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:16 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \&quotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:16 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \";printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:16 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \&quotprintf(md5(acunetix_wvs_security_test))exit// Script: Time: Wednesday 12th 2008f November 2008 04:34:16 PM ================================== IP: 86.106.97.65 Method: POST Value: printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:18 PM ================================== IP: 86.106.97.65 Method: POST Value: ;printf(md5(acunetix_wvs_security_test));exit;// Script: Time: Wednesday 12th 2008f November 2008 04:34:19 PM ================================== IP: 86.106.97.65 Method: POST Value: \'\" Script: Time: Wednesday 12th 2008f November 2008 04:34:19 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&quot Script: Time: Wednesday 12th 2008f November 2008 04:34:20 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:34:20 PM ================================== IP: 86.106.97.65 Method: POST Value: \'\" Script: Time: Wednesday 12th 2008f November 2008 04:34:20 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&quot Script: Time: Wednesday 12th 2008f November 2008 04:34:20 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:34:20 PM ================================== IP: 86.106.97.65 Method: POST Value: \'\" Script: Time: Wednesday 12th 2008f November 2008 04:34:21 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&quot Script: Time: Wednesday 12th 2008f November 2008 04:34:21 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:34:21 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \'\" Script: Time: Wednesday 12th 2008f November 2008 04:34:23 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\&quot Script: Time: Wednesday 12th 2008f November 2008 04:34:23 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \'\" Script: Time: Wednesday 12th 2008f November 2008 04:34:23 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\&quot Script: Time: Wednesday 12th 2008f November 2008 04:34:23 PM ================================== IP: 86.106.97.65 Method: POST Value: \'\" Script: Time: Wednesday 12th 2008f November 2008 04:34:23 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&quot Script: Time: Wednesday 12th 2008f November 2008 04:34:23 PM ================================== IP: 86.106.97.65 Method: POST Value: \\&ampquot Script: Time: Wednesday 12th 2008f November 2008 04:34:23 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:34:24 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:34:25 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:34:25 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:34:25 PM ================================== IP: 86.106.97.65 Method: POST Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:34:25 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \' Script: Time: Wednesday 12th 2008f November 2008 04:34:27 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: !(()&&!|*|*| Script: Time: Wednesday 12th 2008f November 2008 04:34:29 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: !(()&amp&amp!|*|*| Script: Time: Wednesday 12th 2008f November 2008 04:34:29 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: !(()&&!|*|*| Script: Time: Wednesday 12th 2008f November 2008 04:34:32 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: !(()&amp&amp!|*|*| Script: Time: Wednesday 12th 2008f November 2008 04:34:33 PM ================================== IP: 86.106.97.65 Method: POST Value: <meta http-equiv=\'Set-cookie\' content=\'cookiename=cookievalue\'> Script: Time: Wednesday 12th 2008f November 2008 04:34:54 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&gt Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&ampgt Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: POST Value: <meta http-equiv=\'Set-cookie\' content=\'cookiename=cookievalue\'> Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&gt Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&ampgt Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: POST Value: <meta http-equiv=\'Set-cookie\' content=\'cookiename=cookievalue\'> Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&gt Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&ampgt Script: Time: Wednesday 12th 2008f November 2008 04:34:55 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: <meta http-equiv=\'Set-cookie\' content=\'cookiename=cookievalue\'> Script: Time: Wednesday 12th 2008f November 2008 04:34:56 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&gt Script: Time: Wednesday 12th 2008f November 2008 04:34:56 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: <meta http-equiv=\'Set-cookie\' content=\'cookiename=cookievalue\'> Script: Time: Wednesday 12th 2008f November 2008 04:34:57 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: &ltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&gt Script: Time: Wednesday 12th 2008f November 2008 04:34:57 PM ================================== IP: 86.106.97.65 Method: POST Value: <meta http-equiv=\'Set-cookie\' content=\'cookiename=cookievalue\'> Script: Time: Wednesday 12th 2008f November 2008 04:34:57 PM ================================== IP: 86.106.97.65 Method: POST Value: &ltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&gt Script: Time: Wednesday 12th 2008f November 2008 04:34:57 PM ================================== IP: 86.106.97.65 Method: POST Value: &ampltmeta http-equiv=\Set-cookie\ content=\cookiename=cookievalue\&ampgt Script: Time: Wednesday 12th 2008f November 2008 04:34:57 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\'\\\");|]*{ <\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:02 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&quot)|]*{ &lt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:03 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&ampquot)|]*{ &amplt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:03 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\'\\\");|]*{ <\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:03 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&quot)|]*{ &lt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:03 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&ampquot)|]*{ &amplt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:03 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\'\\\");|]*{ <\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:04 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&quot)|]*{ &lt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:05 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&ampquot)|]*{ &amplt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:05 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\'\\\");|]*{ <\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:06 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&quot)|]*{ &lt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:06 PM ================================== IP: 86.106.97.65 Method: POST Value: \\\\\\&ampquot)|]*{ &amplt\0 Script: Time: Wednesday 12th 2008f November 2008 04:35:06 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\'\\\") Script: Time: Wednesday 12th 2008f November 2008 04:35:07 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\\\\&quot) Script: Time: Wednesday 12th 2008f November 2008 04:35:07 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\'\\\") Script: Time: Wednesday 12th 2008f November 2008 04:35:08 PM ================================== IP: 86.106.97.65 Method: COOKIE Value: \\\\\\&quot) Script: Time: Wednesday 12th 2008f November 2008 04:35:09 PM

:))

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

What about if the person is using a proxy? and you should probably write print_r($_SESSIONS);
so we know who's account it is.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

find account with ip !

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

This is blocks commands like shutdown etc ...?! :D

--Shutdown;-- works :S

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

i Have some questions, this code only add to the Logs commands like '.%,\..etc , But i dont think so this stop them this just add to the log right?.
What about if they use the Font Code and edit it, it will not read the config.php right?.

Please answer that questions.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

this code is very effective for the anti-sql injection, i'm created in other spanish forums the guide and put the credits to FCV2005, i hope that the sql injection finished comming soon.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

I'm using the Anti FCV2005 but still be Drop Data ...Help me,please!!

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

first isntall web !
after edit config !!
OMG !

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

lol, i just add those lines first on the config.php before the <?.And the logs it's working perfectly. I really need to reinstall the Web?. I can't turn on it without reinstall?.
And if they edit the Source Code, this will work? or that code will stop this too?

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

how to i can add this to muweb 0.9 becouse when i put thus code.. any option for site .. don`t work

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Quote:

Originally Posted by clamp

how to i can add this to muweb 0.9 becouse when i put thus code.. any option for site .. don`t work

muweb 9 is secure enough already

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Quote:

Originally Posted by budsmoker997

muweb 9 is secure enough already

you think?i dont bet on it

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

this code work with mu web 0.9 ? becouse in my web have bugg

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

just edit config.inc in mu web 9.0 and put that at the top... unless thats encrypted too XD

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

yes but after paste code... register in web site not working...

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Today i got hacked, ofc im using this code.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Help with, I was still inject hack.

Who included Anti with the good.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Hmmm. Nice script! Thanx :)

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

it really can be injected?

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

everything can :laugh:

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Quote:

Originally Posted by birain1402

Help with, I was still inject hack.

Who included Anti with the good.

OMG
FIRST INSTALL WEB

After put code in config !

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Im sorry to break it up to you FCV but you can still he injected via register form :rolleyes:

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

this script can be use on any web??? whill secure 100%?????? this script block shutdown???
i need to be sure i dont whana to lose me acc....
thanks and i hope some1 unser me honest:blushing:

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Quote:

Originally Posted by ApophyS

this script can be use on any web??? whill secure 100%?????? this script block shutdown???
i need to be sure i dont whana to lose me acc....
thanks and i hope some1 unser me honest:blushing:

Yes - but in order for it to properly work, you must have a file attached to your PHP file (this can be done, by using PHP require). Or if your PHP files connect to a file (to fetch data), their most likely to get this information from the config.php file, so you place this code on any the file. Simple as that.

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Code:

IP: 89.41.187.4 Method: POST Value: \'\';shutdown;-- Script: Time: Sunday 19th 2008f October 2008 02:49:48 AM ================================== IP: 89.41.187.4 Method: POST Value: \'\';shutdown;-- Script: Time: Sunday 19th 2008f October 2008 02:49:48 AM ================================== IP: 89.41.187.4 Method: POST Value: \'\';shutdown;-- Script: Time: Sunday 19th 2008f October 2008 02:49:48 AM ================================== IP: 89.41.187.4 Method: POST Value: \'\';shutdown;-- Script: Time: Sunday 19th 2008f October 2008 02:49:48 AM ================================== IP: 89.41.187.4 Method: POST Value: \'\';shutdown;-- Script: Time: Sunday 19th 2008f October 2008 02:49:48 AM ================================== IP: 89.41.187.4 Method: POST Value: \'\';shutdown;-- Script: Time: Sunday 19th 2008f October 2008 02:49:48 AM ================================== IP: 89.41.187.4 Method: POST Value: \'\';shutdown;-- Script: Time: Sunday 19th 2008f October 2008 02:49:48 AM ==================================

Should I leave this IP or change to anything to have it protected?

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

ok tnxs a lot

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

does this worke for muwerb 0.4?

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Good job !

Hai Romania ! :D

Re: [Guide] Anti Sql Inject With 0.8 and others Webs

Good job! Thanks