Web Security Academy ~ SQLi (Lab #1) ⚙️

1 year ago

50

portswigger academy burp suite web security academy

This lab contains a SQL injection vulnerability in the product category filter.

When the user selects a category, the application carries out a SQL query like the following:

SELECT * FROM products WHERE category = 'Gifts' AND released = 1

To solve the lab, perform a SQL injection attack that causes the application to display details of all products in any category, both released and unreleased.

Follow along with this video to learn how to sql inject the application.

Links from video

W3Schools URL Encoding
- https://www.w3schools.com/tags/ref_ur...

💙💙💙💙💙💙💙💙💙💙💙💙
FREE CYBER SECURITY RESOURCES :

The Cyber Mentor --- https://academy.tcm-sec.com
Nathan House --- https://www.stationx.net
John Hammond --- https://johnhammond.org
Loi Liang --- https://loiliangyang.com
HackerSploit --- https://hackersploit.org
David Bombal --- https://davidbombal.com
Professor Messer --- https://www.professormesser.com
w3schools --- https://www.w3schools.com

#hacktolearn #portswigger #burpsuite #portswiggeracademy

Loading comments...

Comments