Scribd Logo
Upload

Welcome to Scribd!

  • 7 views

    SQL Injection 1586258967

    Uploaded by

    Raghad

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    SQL Injection 1586258967

    Uploaded by

    Raghad
    7 views5 pages

    Original Title

    _SQL_injection_1586258967

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    7 views5 pages

    SQL Injection 1586258967

    Uploaded by

    Raghad

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 5

    ‫‪C.A.

    M‬‬
    ‫@‪IT2CAM‬‬

    ‫‪ See on Twitter • Tweets • 2020-04-03 16:33:52 UTC‬‬ ‫‪11‬‬


    ‫‪Thread generated by‬‬ ‫‪rattibha.com‬‬

    ‫‪#‬ﺛ ﺮﻳ ﺪ‬

    ‫ﺑ ﺴ ﻢ اﻟﻠ ﻪ اﻟ ﺮ ﺣ ﻤ ﻦ اﻟ ﺮ ﺣﻴ ﻢ‬
    ‫ز ي ا ﻟ ﻌ ﺎ د ة ﻧ ﺴ ﺘ ﻤ ﺮ ﺑ ﺜ ﺮ ﻳ ﺪا ت ﻋ ﻦ ا ﻟ ﺜ ﻐ ﺮا ت و ﻃ ﺮ ق ا ﺳ ﺘ ﻐ ﻼ ﻟ ﻬ ﺎ‬

    ‫ﺑ ﻬ ﺬا ا ﻟ ﺜ ﺮ ﻳ ﺪ ﺑ ﺘ ﻜ ﻠ ﻢ ﻋ ﻦ ﺛ ﻐ ﺮ ة‬
    ‫‪SQL injection‬‬
    ‫" ﺣﻘﻦ ﻗﻮاﻋﺪ اﻟﺒﻴﺎﻧﺎت " ‪https://t.co/W7taBZnSTa‬‬

    ‫ﺑ ﺘ ﻜ ﻠ ﻢ ﻓ ﻲ ﻫ ﺬ ه ا ﻟ ﺜ ﺮ ﻳ ﺪ ﻋ ﻦ وا ﺣ ﺪ ﻣ ﻦ أ ﺷ ﺪ ا ﻷ ﺧ ﻄ ﺎ ر ﻓ ﺘ ﻜ ﺎ ً ﻓ ﻲ ﺗ ﻄ ﺒ ﻴ ﻘ ﺎ ت ا ﻟ ﻮ ﻳ ﺐ ‪ ،‬ﺣ ﻴ ﺚ‬
    ‫ﻳ ﻤ ﻜ ﻦ ﻟ ﻬ ﺬ ه ا ﻟﻨ ﻮ ﻋﻴ ﺔ ﻣ ﻦ ا ﻟ ﻬ ﺠ ﻤ ﺎ ت أ ن ﺗ ﻘ ﻮ م ﺑ ﻤ ﺴ ﺢ ﻗ ﺎ ﻋ ﺪ ة ﺑﻴ ﺎﻧ ﺎ ت ﻛ ﺎ ﻣ ﻠ ﺔ ‪ ،‬ا و ﺳ ﺮ ﻗ ﺔ‬
    ‫ﻣ ﺤﺘ ﻮﻳ ﺎﺗ ﻬ ﺎ ‪ ،‬ا و ﺗ ﻐﻴﻴ ﺮ ﺑﻴ ﺎﻧ ﺎ ت ﺑ ﻘ ﺎ ﻋ ﺪ ة ا ﻟﺒﻴ ﺎﻧ ﺎ ت ﻣ ﻦ د و ن ا ن ﻳ ﻼ ﺣ ﻆ ا ﺣ ﺪ ‪.‬‬
    ‫ﻣﺎﻫﻲ ﺛﻐﺮة ‪ SQL injection‬؟‬

    ‫ﻫﻲ ﺑﺒﺴﺎﻃﺔ ﻫﺠﻮم ﻳﺘﻢ ﻓﻴﻪ ﺣﻘﻦ ﻛﻮد ‪ SQL‬ﺑﺘﻄﺒﻴﻖ اﻟﻮﻳﺐ ﺣﺘﻰ ﻳﺘﻢ اﺳﺘﺨﺮاج‬
    ‫ا ﻟ ﺒ ﻴ ﺎ ﻧ ﺎ ت ﻣ ﻦ ﻗ ﺎ ﻋ ﺪ ة ا ﻟ ﺒ ﻴ ﺎ ﻧ ﺎ ت ا ﻟ ﺘ ﻲ ﻳ ﻌ ﺘ ﻤ ﺪ ﻋ ﻠ ﻴ ﻬ ﺎ ا ﻟ ﻤ ﻮ ﻗ ﻊ ‪ ،‬وا ﻟ ﺜ ﻐ ﺮ ة ﺗ ﻌ ﺘ ﻤ ﺪ ﻋ ﻠ ﻰ ﺧ ﻄ ﺄ‬
    ‫ﻓ ﻲ ﻋ ﺪ م ﻣ ﻌ ﺎﻳﻨ ﺔ ﻣ ﺎ ﻳﺘ ﻢ إ د ﺧ ﺎ ﻟ ﻪ ﻗﺒ ﻞ ا ن ﻳﺘ ﻢ ﺗ ﻤ ﺮﻳ ﺮ ه ﻟ ﻘ ﺎ ﻋ ﺪ ة ا ﻟﺒﻴ ﺎﻧ ﺎ ت‬

    ‫ﺗﻌﺘﺒﺮ ﻫﺬه اﻟﺜﻐﺮة اﻷﻛﺜﺮ ﺧﻄﻮرة ﺣﺴﺐ ﺗﺮﺗﻴﺐ ‪.OWASP‬‬

    ‫ﺳﺒﺐ وﺟﻮد ﺛﻐﺮة ‪: SQL Injection‬‬

    ‫ا ﻟ ﺴﺒ ﺐ ﻳ ﻌ ﻮ د إ ﻟ ﻰ ﻋ ﺪ م ﺣ ﻤ ﺎﻳ ﺔ ا ﻟﺒﻴ ﺎﻧ ﺎ ت أﺛﻨ ﺎ ء ا ﻟﺘ ﻌ ﺎ ﻣ ﻞ ﻣ ﻊ ا ﻟ ﻘ ﺎ ﻋ ﺪ ة ‪ .‬إ ﻣ ﺎ ﻋ ﻦ ﻏﻴ ﺮ ﻗ ﺼ ﺪ‬


    ‫‪ ،‬و ﻏ ﺎ ﻟ ﺒ ﺎ ﻋ ﻦ ﺟ ﻬ ﻞ ا ﻟ ﻤ ﺒ ﺮ ﻣ ﺞ ‪ .‬ﻓ ﻼ ﻏ ﺮا ﺑ ﺔ أ ن ﻧ ﺠ ﺪ ﻫ ﺬ ه ا ﻟ ﺜ ﻐ ﺮ ة ﻓ ﻲ ا ﻟ ﻜ ﺜ ﻴ ﺮ و ا ﻟ ﻜ ﺜ ﻴ ﺮ ﻣ ﻦ‬
    ‫ا ﻟ ﻤ ﻮا ﻗ ﻊ ‪ .‬ر ﻏ ﻢ أ ﻧ ﻬ ﺎ ﻣ ﻦ أ ﻗ ﺪ م ا ﻟ ﺜ ﻐ ﺮا ت ‪ ،‬و ﻃ ﺮ ق ﺣ ﻤ ﺎ ﻳ ﺘ ﻬ ﺎ ﻻ ﻳ ﺘ ﻄ ﻠ ﺐ ﺟ ﻬ ﺪا و ﺧ ﺎ ﺻ ﺔ‬
    ‫أﺛﻨ ﺎ ء إﻧ ﺠ ﺎ ز ا ﻟ ﻤ ﺸ ﺮ و ع ‪.‬‬

    ‫ﻃ ﺮ ق ا ﻟ ﺤ ﻤ ﺎﻳ ﺔ ‪:‬‬
    ‫ا ﻟ ﺤ ﻤ ﺎ ﻳ ﺔ ﻓ ﻲ ﻫ ﺬا ا ﻟ ﻤ ﺴ ﺘ ﻮ ى ﺗ ﻌ ﺘ ﻤ ﺪ ﻋ ﻠ ﻰ ا ﻟ ﻤ ﺒ ﺮ ﻣ ﺞ ﺑ ﺸ ﻜ ﻞ ﻛ ﺎ ﻣ ﻞ ‪.‬‬
    ‫ﻣ ﺪ ﺧ ﻼ ت اﻟ ﻤ ﺴﺘ ﺨ ﺪ م ﻓﻴ ﺴﺘ ﻄﻴ ﻊ‬
    ‫و ﺑ ﻤ ﺎ ا ن ﺣ ﻘ ﻦ ﻗ ﻮا ﻋ ﺪ ا ﻟ ﺒ ﻴ ﺎ ﻧ ﺎ ت ﻳ ﺘ ﻢ ﻋ ﻦ ﻃ ﺮ ﻳ ﻖ ُ‬
    ‫ﻣ ﺪ ﺧ ﻼ ت ا ﻟ ﻤ ﺴ ﺘ ﺨ ﺪ م وا ﻟ ﺘ ﺤ ﻘ ﻖ ﻣ ﻨ ﻬ ﺎ ‪.‬‬
    ‫اﻟ ﻤﺒ ﺮ ﻣ ﺞ اﻟﺘ ﺤ ﻜ ﻢ ﻓ ﻲ ُ‬

    ‫ﻳ ﺠ ﺐ ﻋ ﻠ ﻰ ﻣ ﻦ ﻳ ﺒ ﻨ ﻲ ﻗ ﻮا ﻋ ﺪ ا ﻟ ﺒ ﻴ ﺎ ﻧ ﺎ ت ا ن ﻳ ﻜ ﻮ ن ﻳ ﻌ ﺮ ف ا ﻧ ﻤ ﺎ ط ﺣ ﻘ ﻦ ا ﻟ ﺒ ﻴ ﺎ ﻧ ﺎ ت ﻟ ﻴ ﺴ ﺘ ﻄ ﻴ ﻊ‬
    ‫ا ن ﻳﺘ ﻔﺎ د ى ﻫ ﺬ ة اﻟﺜ ﻐ ﺮ ة‪.‬‬
    ‫ﻛﻴﻒ اﻋﺮف ﻫﻞ اﻟﻤﻮﻗﻊ ﻣﺼﺎب ﺑﺜﻐﺮة ‪ SQL injection‬او ﻻ ؟‬

    ‫‪ - 1‬ﻛ ﻞ ا ﻟ ﻠ ﻲ ﻋ ﻠ ﻴ ﻚ ا ﺿ ﺎ ﻓ ﺔ ﻋ ﻼ ﻣ ﺔ ا ﻻ ﻗ ﺘ ﺒ ﺎ س ) ' ( ﺑ ﻨ ﻬ ﺎ ﻳ ﺔ را ﺑ ﻂ ﻣ ﻮ ﻗ ﻊ ‪.‬‬


    ‫ﻣﺜﺎ ل‪:‬‬
    ‫'‪http://yoursite/article.php?id=25‬‬
    ‫‪ -2‬اﺿﺎﻓﺔ ﻋﻼﻣﺔ اﻻﻗﺘﺒﺎس ﺑﺄﺣﺪ اﻟﺤﻘﻮل ﺑﺎﻟﻤﻮﻗﻊ‪.‬‬

    ‫اذا ﻇﻬﺮ ﺧﻄﺄ )‪ (error‬او ﺗﻨﺒﻴﺔ )‪(warning‬‬


    ‫ﻓﺎﻟ ﻤ ﻮ ﻗ ﻊ ﻳ ﺤﺘ ﻮ ي ﻋﻠ ﻰ اﻟﺜ ﻐ ﺮ ة‬
    ‫ﻣﺜﺎل ﺑﺎﻟﺼﻮرة ‪https://t.co/NqnzDkjUXX‬‬
    ‫ﺗ ﺠ ﺮﺑ ﺔ ﻋ ﻤ ﻠﻴ ﺔ ‪:‬‬
    ‫ﻫ ﺬا ﻣ ﻮ ﻗ ﻊ ﻟ ﻠ ﺘ ﺪ ر ﻳ ﺐ ﻋ ﻠ ﻰ إ ﺧ ﺘ ﺒ ﺎ ر ا ﻻ ﺧ ﺘ ﺮا ق ‪:‬‬
    ‫‪https://t.co/KCBiylrcy5‬‬

    ‫‪ -1‬ادﺧﻞ اﻟﻤﻮﻗﻊ وﺗﺄﻛﺪ ان اﻟﻤﻮﻗﻊ ﻣﺼﺎب ﺑﺜﻐﺮة ‪ ) SQL injection‬ﻳﻜﻮن ﺑﺈﺿﺎﻓﺔ‬


    ‫ﻋ ﻼ ﻣ ﺔ ا ﻻ ﻗ ﺘ ﺒ ﺎ س ﺑ ﺄ ﺧ ﺮ ا ﻟ ﺮا ﺑ ﻂ ) ' ( (‬

    ‫‪ -2‬اﺳﺘﻐﻼل اﻟﺜﻐﺮة ﻳﻜﻮن ﺑﺘﻐﻴﻴﺮ اﺧﺮ رﻗﻢ ﺑﺎﻟﺮاﺑﻂ ﺑﻘﻴﻤﺔ ﺗﺘﻮﻗﻊ اﻧﻬﺎ ﻟﻴﺴﺖ ﻣﺨﺰﻧﺔ‬
    ‫ﺑ ﻘ ﺎ ﻋ ﺪ ة ا ﻟﺒﻴ ﺎﻧ ﺎ ت ) ﻏ ﺎ ﻟﺒ ﺎ ً ا ﻻ ر ﻗ ﺎ م ا ﻟ ﺴ ﺎ ﻟﺒ ﺔ ﻻﺗ ﻜ ﻮ ن ﻣ ﺨ ﺰﻧ ﺔ ( ‪.‬‬

    ‫• ﺑ ﻌ ﺪ ﺗ ﻐﻴﻴ ﺮ اﻟ ﻘﻴ ﻤ ﺔ اﻟ ﻰ ﻗﻴ ﻤ ﺔ ﺳﺎﻟﺒ ﺔ ﻣﺜ ﻼ ) ‪.( - 1‬‬


    ‫ﻧﻨﺘ ﻘ ﻞ ﻟﻠ ﺨ ﻄ ﻮ ة اﻟﺜﺎﻟﺜ ﺔ‪.‬‬

    ‫‪ -3‬اﺿﺎﻓﺔ ﻛﻠﻤﺔ ‪ UNION‬ﻹرﻓﺎق اﺳﺘﻌﻼﻣﻚ ﻟﻘﺎﻋﺪة اﻟﺒﻴﺎﻧﺎت ﻣﻊ اﻻﺳﺘﻌﻼم اﻷﺻﻠﻲ‬


    ‫و ﺑ ﻜ ﺬا ﻣ ﻤ ﻜ ﻦ ﻧ ﺤ ﺼ ﻞ ﻋ ﻠ ﻰ ﻗ ﻴ ﻢ ا ﻋ ﻤ ﺪ ة ﻣ ﻦ ﺟ ﺪا و ل ا ﺧ ﺮ ى ﺑ ﻘ ﺎ ﻋ ﺪ ه ا ﻟ ﺒ ﻴ ﺎ ﻧ ﺎ ت ‪.‬‬

    ‫‪ -4‬اﺿﺎﻓﺔ اﻣﺮ ‪ SQL‬ﺑﻌﺪ ذﻟﻚ‪.‬‬


    ‫ﻣﺜﺎ ل ﺗ ﻄﺒﻴ ﻘ ﻲ ﻋﻠ ﻰ ﻧ ﻔ ﺲ اﻟ ﻤ ﻮ ﻗ ﻊ‪:‬‬
    ‫ﻫﺬا ﻛﻮد ‪ SQL‬ﺗﻀﻴﻔﺔ ﺑﻌﺪ اﻟﺮاﺑﻂ وﺑﻌﺪ ﺗﻐﻴﻴﺮ اﺧﺮ ﻗﻴﻤﻪ اﻟﻰ ) ‪: ( -1‬‬

    ‫‪'UNION SELECT 1,pass,cc FROM users WHERE uname='test‬‬

    ‫ﺑﻴﻜﻮن ﺷﻜﻞ اﻟﺮاﺑﻂ ﺑﺎﻻﺧﻴﺮ ﻣﺜﻞ اﻟﺼﻮرة‪https://t.co/upRUHpvkQh :‬‬

    ‫اﺗ ﻤﻨ ﻰ ﻣ ﻦ ا ي ﺷ ﺨ ﺺ ﻃﺒ ﻖ ا ﻟ ﻄ ﺮﻳ ﻘ ﺔ و ﻃ ﻠ ﻊ ﻟ ﻪ ﻧﺘﻴ ﺠ ﺔ ‪ ،‬ﻳ ﺸ ﺎ ر ﻛ ﻬ ﺎ ﻣ ﻌﻨ ﺎ‬

    ‫وا ﺗ ﻤ ﻨ ﻰ ا ﻧ ﻲ ا ﻓ ﺪ ﺗ ﻜ ﻢ ﻋ ﻠ ﻤ ﻴ ﺎ ً و ﻋ ﻤ ﻠ ﻴ ﺎ ً ﺑ ﻄ ﺮ ﻳ ﻘ ﺔ ﻣ ﺒ ﺴ ﻄ ﺔ‬
    ‫ﺗﻢ اﻧﺸﺎء ﻫﺬه اﻟﺼﻔﺤﺎت ﻋﻦ ﻃﺮﻳﻖ ﺧﺪﻣﺔ رﺗﺒﻬﺎ )‪(https://www.rattibha.com‬‬
    ‫إن ﻣﺤﺘﻮﻳﺎت ﻫﺬه اﻟﺼﻔﺤﺎت‪ ،‬ﺑﻤﺎ ﻓﻲ ذﻟﻚ ﺟﻤﻴﻊ اﻟﺼﻮر واﻟﻔﻴﺪﻳﻮﻫﺎت واﻟﻤﺮﻓﻘﺎت واﻟﻮﺻﻼت اﻟﺨﺎرﺟﻴﺔ اﻟﻤﻨﻘﻮﻟﺔ ﻣﻌﻬﺎ )ﻳﺸﺎر إﻟﻴﻬﺎ‬
    ‫ﻣ ﺠ ﺘ ﻤ ﻌ ﺔ ﺑ ﺎ ﺳ ﻢ " ﻫ ﺬ ا ا ﻟ ﻤ ﻨ ﺸ ﻮ ر"( ‪ ،‬ﺗ ﻢ ا ﻧ ﺸ ﺎ ؤ ﻫ ﺎ ﺑ ﻨ ﺎ ء ﻋ ﻠ ﻰ ﻃ ﻠ ﺐ ﻣ ﺴ ﺘ ﺨ ﺪ م‪ /‬ﻣ ﺴ ﺘ ﺨ ﺪ ﻣ ﻴ ﻦ ﻣ ﻦ ﻣ ﻮ ﻗ ﻊ ﺗ ﻮ ﻳ ﺘ ﺮ ‪ .‬ﺣ ﺴ ﺎ ب ر ﺗ ﺒ ﻬ ﺎ ﻳ ﻘ ﺪ م ﺧ ﺪ ﻣ ﺔ آ ﻟ ﻴ ﺔ ‪،‬‬
    ‫ﻣﻦ ﻏﻴﺮ ﺗﺪﺧﻞ ﺑﺸﺮي‪ ،‬ﻟﻨﺴﺦ ﻣﺤﺘﻮﻳﺎت اﻟﺘﻐﺮﻳﺪات ﻣﻦ ﻣﻮﻗﻊ ﺗﻮﻳﺘﺮ وﻧﺸﺮﻫﺎ ﺑﺄﺳﻠﻮب ﻣﻘﺎﻟﻲ وﺗﻜﻮﻳﻦ ﺻﻔﺤﺎت ‪ PDF‬ﻗﺎﺑﻠﺔ ﻟﻠﻨﺸﺮ‬
    ‫و ا ﻟ ﻄ ﺒ ﺎ ﻋ ﺔ ‪ ،‬ﻋ ﻨ ﺪ ﻃ ﻠ ﺐ ا ﻟ ﻤ ﺴ ﺘ ﺨ ﺪ م‪ /‬ا ﻟ ﻤ ﺴ ﺘ ﺨ ﺪ ﻣ ﻴ ﻦ ‪ .‬و ﻳ ﺮ ﺟ ﻰ ﻣ ﻼ ﺣ ﻈ ﺔ أ ن ا ﻵ ر ا ء و ﺟ ﻤ ﻴ ﻊ ا ﻟ ﻤ ﺤ ﺘ ﻮ ﻳ ﺎ ت ا ﻟ ﻮ ا ر د ة ﻓ ﻲ ﻫ ﺬ ا ا ﻟ ﻤ ﻨ ﺸ ﻮ ر ﻫ ﻲ آ ر ا ء‬
    ‫اﻟﻜﺎﺗﺐ وﻻ ﺗﻤﺜﻞ ﺑﺎﻟﻀﺮورة آراء ﻣﻮﻗﻊ رﺗﺒﻬﺎ‪ .‬ﻣﻮﻗﻊ رﺗﺒﻬﺎ‪ ،‬ﻻ ﻳﺘﺤﻤﻞ أي ﻣﺴﺆوﻟﻴﺔ ﻋﻦ أي ﺿﺮر أو ﻣﺨﺎﻟﻔﺎت ﻷي ﻗﺎﻧﻮن ﻧﺎﺗﺠﻪ ﻋﻦ‬
    ‫ﻣﺤﺘﻮﻳﺎت ﻫﺬا اﻟﻤﻨﺸﻮر‪.‬‬

    You might also like