supermoose37 Posted March 20, 2011 Share Posted March 20, 2011 Can someone provide me with a good SQL Injection. I've built my own web app to demonstrate the dangers of SQL Injections and how a hacker can use them to view the underlying SQL tables. Thing is, I've tried various different injections such as ' or 1=1--, but they all fail. Meaning, it just displays the routine "Invalid User" error message. What exactly would a hacker use/do to gain access to the MySQL database. [attachment deleted by admin] Link to comment https://forums.phpfreaks.com/topic/231204-whats-a-good-sql-injection/ Share on other sites More sharing options...
fenway Posted March 29, 2011 Share Posted March 29, 2011 You'll need to echo the queries you're producing. Link to comment https://forums.phpfreaks.com/topic/231204-whats-a-good-sql-injection/#findComment-1193916 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.