🕸️ PSA - SQLi 2 - SQLi Allowing Authentication Bypass

Posted Mar 2, 2023 Updated Sep 28, 2024

By blueh0rse

1 min read

Difficulty : Apprentice

🎯 Goal

To solve the lab, perform a SQL injection attack that logs in to the application as the administrator user.

In the Username field of the Login form:

administrator'--

Anything can be put in the password field:

abc

This post is licensed under GNU GPLv3 by the author.