C1L4: SQL Injection

Please purchase the course before starting the lesson.

https://s3.amazonaws.com/infosecaddictsfiles/1-Intro_To_SQL_Intection.pptx Another quick way to test for SQLI is to remove the paramter value Error-Based SQL Injection or 1 in (SELECT DB_NAME(0))-- or 1 in (SELECT DB_NAME(1))-- or 1 in (SELECT DB_NAME(2))-- or 1 in (SELECT DB_NAME(3))-- or 1 in (SELECT DB_NAME(4))-- or 1 in (SELECT DB_NAME(N))-- NOTE: "N" [...]

Back to: Burp Suite Workshop