SQL Injection

Introduction

Basics of SQL Language

What is SQLi

How to detect SQLi

Error Based SQLi

Boolean Based SQLi

UNION Based SQLi

After testing different number of columns, we can find the right number of columns in the database with this search query

We can also see that all of the columns can take a string input with this query

We can see the name of the database with this query

Automating Exploitation

PreviousSQL Injection LabNextZTH: Web 2

Last updated

Was this helpful?