Printable View
If you follow a quote (with username and post ID; e.g. the quotes that appear in Reply With Quote) with +#lgg, it will now automatically donate # of your LGG to that user.
This is beta. Don't be surprised if you encounter a bug. But it seems bugless for now.
Leave feedback, please.
+10lgg for this post.
AMIDOINGITRITE
Nope.Quote:
Originally Posted by The Unintelligible
+1lgg
+5lgg
cool feature. Now we just need the 'like' button back.
I was making this as an alternative to a like feature. I'm thinking of having it display "[user] donated [x] LGG to this post" displaying at the bottom of donated posts or something, to make them stand out.
Like was tied to rep though, not LGG
Like was also a button, not a text command. So it's more tedious and takes lgg from you. Having it display the text after you donated to someone is sort of redundant because "+lgg" seems indicative enough.
YOU SHOULD IMPLEMENT BOTH BRO. The more the merrier. I dunno though.
I know it's through rep, but people have already asked if they can just donate LGG through likes/rep. Ergo this.
+1lggQuote:
Originally Posted by The Unintelligible
+UNION SELECT 7--lggQuote:
Originally Posted by The Unintelligible
+100000lggQuote:
Originally Posted by GAMEchief
You have to be really inexperienced if you think a raw SQL query would ever work.Quote:
Originally Posted by Flareboy323
The text command has no notion of SQL at all and is processed on the server side.
Even assuming it worked, which isn't possible, wouldn't it dump the info to GAMEchief via PM rather than publicly. Just a thought.
It's based on RegExp anyway, because I'm not an idiot. So if it's not literally a number, it won't even be recognized any differently than any other thing you type.
As the guy who exploited LG countless times, don't hold your breath on finding any exploits in my code. :P
Lol Unintelligible, I was going out on a limb. I didn't expect it to work, it was more for the humor of putting an SQL statement as the value more than it was to actually try to exploit it. And anyway, I would have had to post a huge number that I would expect to dump an error, because the LG database probably has way more than 7 measly columns.
Also, lol @GAME. That's true.
7 columns?
SELECT 7 just returns the integer 7.
No, in SQL injection you use UNION SELECT statements to try to find the number of columns the website has.Quote:
Originally Posted by GAMEchief
For example,
vulnerablewebsite.com/vulnerable.php?vulnerableURL=UNION SELECT 7--
If there's 7 columns or under, it would return a normal page.
If you do
vulnerablewebsite.com/vulnerable.php?vulnerableURL=UNION SELECT 8--
and there's only 7 columns, there would be a huge MySQL error covering that page, about how it can't read the 8th column.
EDIT: GOD DANG IT, IT WON'T UN-HYPERLINK IT. Gonna remove the www.
wat
+1lggQuote:
Originally Posted by HTML
Like dat
+9%007777777lggQuote:
Originally Posted by HTML
Lel. This isn't right. Union simply merges multiple select queries, but it will only work if the resulting queries return the same number of columns. In MySQL, SELECT 7 will, like Charles said, return one column, one row, with a header and value of 7. So if you had a table with 7 columns, and you tried to perform a union with SELECT 7, it would give a MySQL error (which may or may not be reflected in your page).Quote:
Originally Posted by Flareboy323
If you truly wanted to test how many columns there were in a table with a union, you'd want to do something like UNION SELECT 1,2,3,4,5,6,7 for 7 columns.
:)
Sheeeiiiittt you guys are correct, just realized I'm mixing the two up. I meant ORDER BY, not UNION SELECT. UNION SELECT is for getting the data, but you can also get the columns with the method arti said.