Web Security Academy ~ SQLi (Lab #3) ⚙️

When an application is vulnerable to SQL injection and the results of the query are returned within the application's responses, the UNION keyword can be used to retrieve data from other tables within the database. This results in a SQL injection UNION attack.

When performing a SQL injection UNION attack, there are 2 effective methods to determine how many columns are being returned from the original query.

The 1st method involves injecting a series of ORDER BY clauses and incrementing the specified column index until an error occurs.

The 2nd method involves submitting a series of UNION SELECT payloads specifying a different number of null values:

' UNION SELECT NULL--
' UNION SELECT NULL,NULL--
' UNION SELECT NULL,NULL,NULL--

💙💙💙💙💙💙💙💙💙💙💙💙
FREE CYBER SECURITY LEARNING RESOURCES :

The Cyber Mentor --- https://academy.tcm-sec.com
Nathan House --- https://www.stationx.net
John Hammond --- https://johnhammond.org
Loi Liang --- https://loiliangyang.com
HackerSploit --- https://hackersploit.org
David Bombal --- https://davidbombal.com
Professor Messer --- https://www.professormesser.com
w3schools --- https://www.w3schools.com

#hacktolearn #websecurityacademy #unionselect #sqli