6. SQL Injections

🖼Description

Practice SQL injections against 10.124.211.96

📊Goals

✔️ Find all injection points

🧰Tools

• SQLMap
• Web Browser

💡 Steps

1️⃣ Explore the web application

2️⃣ Test and exploit injection points

3️⃣ Dump the data

4️⃣ Login without using any credentials

🏁 MY Solution

🔺 Explore the web application

login.php

news.php

newsdetails.php

🔺 Test and exploit injection points

testing newsdetails.php