buddyram
New Voyage
even now for pre-order of anniversary issue Digit is using CCAvenue gateway!
Yeah! Trust Digit Guys!
Last edited:
CCAvenue Gateway Hacked
- Status
Yeah! Trust Digit Guys!
Garbage
God of Mistakes...
skeletor
Chosen of the Omnissiah
Honestly, there is nothing like if X is using it...then it is/must-have-been reliable.
It appeared reliable to everyone and even me, but not now as we know it was designed by novice people.
Tejas.Gupta
Ethical Hacker :)
Atleast they could have used MD5 hashes :/
suyash_123
Techno Freak
hi all,
my site was also infected / hacked by Sql injection methord.
till date i dont know waht was Sql injection ( i used Asp site)
Sql injection usually happens when we write Sql queries (which is used to access database) directly In Asp (front end ) code.
examle : select * from table1 where NameId = ' selec
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = 'myname' + 'INSERT INTO members ('email','passwd','login_id','full_name')
VALUES ('steve@unixwiz.net','hello','steve','Steve Friedl');--'
likewise they insert query in query and Get data or insert data and update too...
I did that in whole website and have to make site down for a Week to remove this issue.
solution was : to make as muck as store procedures and avoid Sql quires inline in code.
also use Regular expressions to remove special charactres lIke " ' "
this ' syambaol is very very very dangerous to SQL database and use differtn ways to Compramist it By repalcing ' with '' or etc etc.
as My Site was not Payment supported i was safe.
But Man sql injection On Payment gate Way is A Big S#it on face.
they must be very very secure By suing Numerous algorithms and ssl etc.
but They are saving password son text format ha ah ha useless
i m unsafe Now....
my site was also infected / hacked by Sql injection methord.
till date i dont know waht was Sql injection ( i used Asp site)
Sql injection usually happens when we write Sql queries (which is used to access database) directly In Asp (front end ) code.
examle : select * from table1 where NameId = ' selec
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = 'myname' + 'INSERT INTO members ('email','passwd','login_id','full_name')
VALUES ('steve@unixwiz.net','hello','steve','Steve Friedl');--'
likewise they insert query in query and Get data or insert data and update too...
I did that in whole website and have to make site down for a Week to remove this issue.
solution was : to make as muck as store procedures and avoid Sql quires inline in code.
also use Regular expressions to remove special charactres lIke " ' "
this ' syambaol is very very very dangerous to SQL database and use differtn ways to Compramist it By repalcing ' with '' or etc etc.
as My Site was not Payment supported i was safe.
But Man sql injection On Payment gate Way is A Big S#it on face.
they must be very very secure By suing Numerous algorithms and ssl etc.
but They are saving password son text format ha ah ha useless
i m unsafe Now....
- Status