Realistic 7

no matter what I type into the …nfo.php?action=name&&id=9 , url all I get is SQL Syntax error, check blah blah blah

Can anyone plz help?

do we need to use UNION ALL ?

thx

Dantronix

try another approach. not always going to be SQL stuff in every challenge :P

ok, maybe my brains fell asleep, or out, can you give me a push in the right direction please? if not SQL inject then maybe?

Thanks

Dantronix

read all the forums. They will guide you young skywalker…

done that, before asking for help, all I read is that people were trying to inject SQL into the **info.php? url

:o

PM me with exact details into what you have done. I will look it over and see if you are on the right track.

*Edit - I managed to get the teachers passords but cant find the right admin url to spoof the browser with? any help?

Cheers

Dantronix