Many older websites and portals are still affected by SQL injection vulnerabilities, which allow an attacker to access a restricted area without knowing the user’s credentials.
Today, I’ll explain how the SQL injection technique works and how you can protect your website or portal.
We’ll look at how to defend against three types of attacks using three real-world examples.
00:00 Introduction and demo setup
08:53 Attack n.1: Login with a clear password
13:17 Attack n.1: Obfuscated passwords
16:03 Attack n.2: For a specific user
19:03 Attack n.3: Guessing a specific user’s password
26:45 How to protect yourself by writing secure code
Download the examples here and try them on your PC:➡️https://alessandroscola.com/download/php/sqlinjection.7z
