Yes it is exploitable, but not with MySQL syntax. You have to use MSSQL syntax. Also, no one is going to stop you from doing whatever you want to, but we do not condone unlawful activities on this website. So if you're going to break the law leave iexploit's name out of it.

Yeah deffo check out MSSQL, unfortunately a lot of tutorials on sql injection are based on MySQL and not MS or Oracle.

a_tek7 said:

[quote="a_tec7"]

I was testing a website and by adding a little ' at the end of

asp?id=23'

I found the following error:

Microsoft OLE DB Provider for ODBC Drivers error '80040e14' 

[Microsoft][ODBC Microsoft Access Driver] Syntax error in query expression 'id like '%23'%''. 

/fa/articlev.asp, line 20 

... [/quote]

Look at the error. It's saying: " 'id like '%23'%' ". The single quotes at both ends of that statement mean nothing. It's the '%23'%' in the middle you should be concerned about. The highlighted part is your input. Look at it closely. What caused the syntax error? This is where your vulnerability lies. First, figure out what % means so you have an idea what's going on here. Looking at this error, I can already think of several ways to exploit this.

@a_tek7 I personally don't have the link to the 3rd part, you will have to check his twitter to see if i missed something. http://twitter.com/#bzyklon - he got arrested a few months ago, he went offline and i haven't heard from him again, hence be sure to use protection and clear the sever logs.

No Comment?Nobody is interested to look at target web?

@a_tek7 I think your issue is your trying to use a skill without practicing it or understanding it properly. The process of sqli is different for MS-SQL to MySQL it seems your trying to port mysqli to ms-sqli.

So many good tutorials on ms-sqli:

http://lmgtfy.com/?q=ms+sql+injection+tutorial

As m0rph has laid down the rules I'm going to assume I'm right in the following... we can correct you in your technique in a hypothetical situation or in learning a skill, not in the practical application of you hacking a specific target (in this case a website). Maybe something to keep in mind for further questions.

Just do what you were in the beginning of your topic with things like: index.asp?id=69

If you want to get a good grasp on mssql injections, you first have to understand that mssql is not generally used with php, it is used with asp. So you have to get a good understanding of inherent asp vulnerabilities: http://lmgtfy.com/?q=asp.net+vulnerabilities

You also have to have a good understanding of general mssql syntax: http://lmgtfy.com/?q=mssql+tutorials

Finally, you have to understand how they work together: http://lmgtfy.com/?q=asp.net+mssql+tutorials

Finally, once you understand how asp is different from php, and how myssql is different from mysql, and how asp is used with mssql, THAT'S when you start getting into attacks: http://xd-blog.com.ar/descargas/manuales/bugs/full-mssql-injection-pwnage.html

We don't want to discourage you from learning, but if you have questions about things you don't understand, or information that is not easily found from searching on your own, that's the time to turn to users in the forum. We can't just give you links to gee-whiz knowledge that you easily could have found on your own. Hacking communities don't revolve around simple give-me's and hand-outs, they revolve on curiousity, innovation, and helping others when you have an answer to something you thought was extremely difficult to solve.

Maybe the query like : select xx from yy where id ='%"& id &"%';