Questions and Answers

How do I collect points?

  • +5
    Chosen as best answer
  • +1
    Posted answer
  • +1
    Posted question
  • +1
    Thumb up
  • -1
    Thumb down
8

by Kw33nB in Challenge Help about August 8, 2016 closed - report

Basic 22 - SQL Injection 2

This one seems pretty straightforward but totally beats me. I know the underlying query now but i'm not able to manipulate it. That's because every time I try to append a SELECT query through the vulnerable parameter, I am getting a request-timed-out or network error or in some cases, an application error. When the page loads for a long time, I know something is happening in the back-end but nothing really does! I can't get where I am going wrong, hints please!

Answers: 2 • Score 0 • Views: 2168
Browse by
  • 96

    by ccccombobreaker about August 8, 2016 Best answer

    maybe this helps... https://www.youtube.com/watch?v=ciNHn38EyRc 

    i dont really understood your problem tho :/

    feel free to message me if you want to, maybe i can help you

  • 49

    by coyote86 about August 11, 2016

    You have to remember some of these challenges are simulated. I venture that you are definitely overthinking this.  Keep the queries simple and if you don't see results modify them.  As stated on the challenge title page this mission is not blind injection.  Don't over think it! If you still are stuck message me and I will grab a few resources for you, to push you in the right direction.

Question was closed.