emln/OffSec-CTF
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
OffSec-CTF/web-sqli/03_book_brew/writeup
emln 9f240eba3b Second CTFs part
2026-05-10 20:42:33 +02:00

5 lines
246 B
Plaintext
Raw Permalink Blame History

The registration form is safe, however the MyReviews page not, therefore we create a username with an embedded sql injection,
this sql injection will be executed opening the MyReviews page.
prova' UNION SELECT 1,2,3,4,flag,6,7,8 FROM secrets--
Reference in New Issue View Git Blame Copy Permalink