Injection 0x02

First you have to login as a user jeremy to get a valid session cookie

Then forward the GET request with the session to the repeater

Try to put some injection in the cookie session

Blind injection since it is not returning anything just behaviour

Now we are going to enumerate for the sql version

First we are going to try 7 in the first

But it returns error with content length 1928

Then when we try 8

We get a access content length with 1027

Next

After that we determine that mysql version is 8.0.3

Now we are going to find some password for jessamy user

Put this in intruder

Put the alphabet (a-z) (A-Z)

We can see the z and Z are accepted

We can try manually like again but it will take time

The second letter since we know the first letter is z or Z

Or we could use the sql map

Just save the GET request with the session cookie

But we just want the injection 0x02 table

PreviousInjection 0x01NextInjection 0x03 [Challenge]

Last updated