Cyber World

In this tutorial I am going to Show you how sql injection works and how its useful to get the database from website .  What is SQL Injection ? Its most common web application venerability. Its allows attacker to execute SQL queries so website got hacked. There are tow types of sql injection   1.SQL Injection 2.Blind SQL Injection  So lets start 1.Check for vulnerability Most famous google dork is "inurl:php?id="  Let’s say that we have some site like this http://www.site.com/journal.php?id=6 Now to test if is vulrnable we add to the end of url ‘ (quote), and that would be http://www.site.com/journal.php?id=6′ so if we get some error like “You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right etc…” that means is vulrnable to sql injection 2 Find the number of columns To find number of columns we use statement ORDER BY (tells database how to order the result) Now we need to Increase  the ...