It is type of attack perform in the online web application in order to get the admin access without entering the credential for authentication.
It can happen because of improper validation in client and server side.
For Client side, java-script will help to validate the input data from the end user. After travel through the network, it can be validate in the server side using PL SQL.
T
Type the character as mentioned below in the field of log in username and password.
'
admin'
admin' or '1'=='1
admin' or 1==1--
The result for injecting the sql will execute the query to produce the error for back end or successful authentication occurs.
It can happen because of improper validation in client and server side.
For Client side, java-script will help to validate the input data from the end user. After travel through the network, it can be validate in the server side using PL SQL.
T
Type the character as mentioned below in the field of log in username and password.
'
admin'
admin' or '1'=='1
admin' or 1==1--
The result for injecting the sql will execute the query to produce the error for back end or successful authentication occurs.
No comments:
Post a Comment