Writeups and Walkthroughs

Home GitHub Portfolio Twitter/X Medium Cont@ct

Home GitHub Portfolio Twitter/X Medium Cont@ct

✍️Writeups and Walkthroughs
THM
HackTheBox
Vulnhub
- Brainpain (BoF)
DockerLabs
DVWA
Mutillidae II
Secure Bank
PortSwigger - Web Security Academy
HomeMade Labs

Powered by GitBook

On this page

Secure Bank

-----

Extracting Data

PreviousSQLi Login Bypass NextFinding Number of Columns

Last updated 2 months ago

Lab 8: SQL Injection - Extracting data with SQL injection

Go to User Lookup page

Injection this payload into username field: admin' OR 1=1 — we can dump all DB users

http://127.0.0.1/index.php?page=user-info.php