Back to directory
WRITEUP #2954

Finding an unseen SQL Injection by bypassing escape functions in mysqljs/mysql

SQL Injection
by@stereotype32(stypr)
Program
Oracle (MySQL)
Published
Feb 21, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://flattsecurity.medium.com/finding-an-unseen-sql-injection-by-bypassing-escape-functions-in-mysqljs-mysql-90b27f6542b4
RELATED WRITEUPS
Directory Traversal, SQL Injection and Server-Side Request Forgery
SQL InjectionPath traversal
Breaking Down Barriers: Exploiting Pre-Auth SQL Injection In WhatsUp Gold - CVE-2024-6670
SQL InjectionReverse engineering
Bypassing airport security via SQL injection
SQL Injection
World of SELECT-only PostgreSQL Injections: (Ab)using the filesystem
SQL Injection
Exploiting authorization by nonce in WordPress plugins
RCEArbitrary file upload

Built with ❤️ by Shubham Rawat