filmov
tv
SQL injection vulnerability in WHERE clause allowing retrieval of hidden data
Показать описание
Use Burp Suite to intercept and modify the request that sets the product category filter.
Modify the category parameter, giving it the value '+OR+1=1--
Submit the request, and verify that the response now contains one or more unreleased products.
Modify the category parameter, giving it the value '+OR+1=1--
Submit the request, and verify that the response now contains one or more unreleased products.
0:01:38
0:02:39
0:00:33
0:10:14
0:07:05
0:00:36
0:00:48
0:01:15
0:06:42
0:13:28
0:01:46
0:03:18
0:00:55
0:10:21
0:00:52
0:29:23
0:00:15
0:00:54
0:00:13
0:05:28
0:06:58
0:00:39
0:09:43
0:07:33