In this video, we cover Lab 1 in the SQL injection track of the Web Security Academy. This lab contains an SQL injection vulnerability in the product category filter. To solve the lab, we perform a SQL injection attack that causes the application to display details of all products in any category, both released and unreleased. Support Me Buy my course httpsacademy.ranakhalil.compweb-security-academy-video-series Contents of this video 0000 - Introduction0122 - Lab 1 SQL injection vulnerability in WHERE clause allowing retrieval of hidden data0210 - Understand the exercise and make notes about what is required to solve it0332 - Exploit the lab manually1157 - Script the exploit2847 - Summary2907 - Thank You Links SQL injection Theory video (previous video) httpswww.youtube.comwatch?v1nJgupaUPEQPython script httpsgithub.comrkhal101Web-Security-Academyblobmainsql-injectionlab-01sqli-lab-01.pyNotes.txt document httpsgithub.comrkhal101Web-Security-Academy-Seriesblobmainsql-injectionlab-01notes.txtWeb Security Academy Youtube Video Series Release Schedule httpsdocs.google.comspreadsheetsd16ypyLuDq2DZ1JAz_WvL1ZV-WiDWhvomgrK_1Hux4MFY Web Security Academy httpsportswigger.netweb-securityRana's Twitter account httpstwitter.comrana__khalil
Compartilhar