So I have a website where I have to retrieve a password. I have only one form on the page, where I have to put the password. I tried "OR 1=1# and it told me "Authentication valid", but does not giving me the password, which I need.
Is there any way with SQL injection to "print" the password by writing the sql request directly in the form and not in the URL ?
Aucun commentaire:
Enregistrer un commentaire