Let us see the source code to find what kind of vulnerability is this Source Code: <? Yeah your guess is right !!! It is SQL Injection Vulnerability.
First I tried 1' or '1'='1' # in username field and I got access denied error message ... After looking into the code once again I found that we need to use double quotes instead of single codes to execute our query. Then I tried 1" or "1"="1" # in username field and I got the password for next level . :) Successful login ! The password for natas15 is AwWj***cvxr****gZ9J5****kmxdk*** Vulnerability: https://www.owasp.org/index.php/SQL_Injection Remedy : http://stackoverflow.com/questions/60174/how-can-i-prevent-sql-injection-in-php
0 Comments
|
Details
Categories
All
Archives
June 2017
Vivek N
An idea can change your life :) |