Introduction

Types of SQL Injections

In-band

In simple cases, the output of both the intended and the new query may be printed directly on the front end, and we can directly read it.

Union Based: used when can specify the exact location, i.e., column Error Based: used when can get the PHP or SQL errors in the front-end

Blind

In more complicated cases, we may not get the output printed, so we may utilize SQL logic to retrieve the output character by character.

Out-of-band

In some cases, we may not have direct access to the output whatsoever, so we may have to direct the output to a remote location, 'i.e., DNS record,' and then attempt to retrieve it from there.

PreviousSQL Argument NextSubverting Query Logic

Last updated 9 months ago