Secure Testing: SQL Injection

Bronze I

5 days ago

I'm going to make this as easy as possible without actually giving you the answer. The reason being is because once people see the answer they will be able to better understand the problem in the future.

A variation of this will be used for the final 2 answers in the email field. This is the exact query that you have to edit in the lab.

SELECT * FROM users WHERE username='' or username='admin' --' and password='testing123'

All of the ' in this query are single quotes except 1. The 2nd ' after username in the initial query is a backtick the character that breaks the query. They try to help you understand this with the question prior with how they only needed the ` (backtick) to get the same error. I didn't know which one was the backtick originally. Once I knew it becomes more obvious that they are pointing you towards that character. The second piece of information that will wrap this up for you is the statement where it says sometimes it's useful to use the URL encoded equivalent. This information will get you the second to last question.

Adjust the second to last query with the specified username instead and you will have the final answer.

Hope that helps!

Forum Discussion

Featured Places

Help & Support Forum

Related Content

Pen Test CTFs: Jinja2 Exploitation

Course Secure Testing: XSS

Stuck on "SQL Injection (Module 1) : File download"

Pen Test CTFs: Immersive Code Q4

Secure testing Directiory transversal lab

Recent Discussions

Incident Response: P2 - stuck on Q11

Python: Expert Challenge 3

Haunted Hollow 2023: Haywire Host

CVE-2024-0012 and CVE-2024-9474 (Palo Alto PAN-OS) – Offensive Question

Kusto Query Language: Ep.9 – Parsing Complex Data Types.