Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Active Test / SQLI #73

Open
DeliciousBounty opened this issue Aug 31, 2022 · 0 comments
Open

Active Test / SQLI #73

DeliciousBounty opened this issue Aug 31, 2022 · 0 comments
Labels
New active check New active check

Comments

@DeliciousBounty
Copy link
Collaborator

SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application.
The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed.
The check has to simulate a SQL Injection on every Method/Endpoint where parameter should be vulnerable.
For more info :
https://book.hacktricks.xyz/pentesting-web/sql-injection
@DeliciousBounty DeliciousBounty added the New active check New active check label Sep 1, 2022
@RazMag RazMag added the bounty label Sep 4, 2022
@RazMag RazMag removed the bounty label Oct 25, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
New active check New active check
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@DeliciousBounty @RazMag