SQL Injection:
SQL stands for structured query language. It is used to design databases. Sql injection is the vulnerability occurring in database layer of application which allow the attacker to see the contents stored in the database. This vulnerability occurs when the user's input is not filtered or improperly filtered.
The main goal of attacker is use to access the information stored in website's database. It can be done both manually and by using tools.
Now we will go through using a tool. We need sql injector for that. You can download it here.
Steps of attack:
Vulnerable website> Database> tables> columns> data
No comments:
Post a Comment