SQL Injection Part 2– How to Inject

We have created a proper login in Part 1. Proper login in the sense it was syntactically OK but not an efficient one. Let’s how a hacker can get into a system. He inserts the username as nobody or 1=1 password  = idontknow or 1=1 Now the $sql will get the following value SELECT *... Continue Reading →

Powered by WordPress.com.

Up ↑

%d bloggers like this: