Advent of Cyber is now regular seasonal room on
TryHackMe page.
This is their 4th time and again with awsome story to follow each day's assignment.
Today's task covers topic of SQL Injection (SQLi).
SQL injection is the placement of malicious code in SQL statements, via web page input.
Attackers will most probably try to querry the database return all of the users and passwords of the application if this vulnerability exist.
Before you start with solving task you need to boot up VM in the task and attackbox for accessing the page. It will probably take a minute or two to boot up.
After that we can open link to the developer page of the app we will try to fix. We login with provided credentials.
- Question 1 - Fixing SQLi by Data Type Validation
First we use fix from description of the task to fix first and then second querry in the elf.php file after we have saved and press run we will get the first flag
- Question 2 - Fixing SQLi Using Prepared Statements
With prepared statment described in the task we can quickly fix the search_toys.php and get second flag.
- Question 3
To find the third flag we need to fix toy.php we can easly fix it same way we fix the elf.php with data type validation.
- Question 4
For fixing the 4th vunlerability and getting forth flag we will need to fix the login.php. We do it with prepared statment as we did with second flag. Just make sure you use $username and $password instead of $q
I hope anyone who gets stuck finds it helpful
AudiTTRSi
No comments:
Post a Comment