0xbro
1 sostenitore
Bypassing addslashes() using format stri ...

Bypassing addslashes() using format string to get SQL Injection

Feb 28, 2022

Baby sql is a Medium difficulty Web challenge from HackTheBox. In this video we are going to exploit a format string vulnerability in order to bypass the PHP addslashes() function and obtain SQL Injection against the target.

Read the full writeup here!

https://www.youtube.com/watch?v=_ay4RyGzduw

Ti piace questo post?

Offri un caffè a 0xbro

Altro da 0xbro