SQL Injection
1) SQL Injection?
SQL Injection is type of web attack. Attacker use hole in script to take all data from database. Vulnerable sites are in format: Continue reading
SQL Injection
1) SQL Injection?
SQL Injection is type of web attack. Attacker use hole in script to take all data from database. Vulnerable sites are in format: Continue reading
SQL Injection – Load File
You found site with SQL vulnerability, now you can try to access table mysql.user and file privileges.
To so which is user and do we have user privileges we are adding ‘user’ instead of a vulnerable column and at end of URL adding ‘+from+mysql.user–‘.
It should look like this: Continue reading