1:13:17 Yo bro please respond i got two questions, why didn't you do it in the terminal would it still work curl -H "User-Agent: ' UNION SELECT...., and for the why is flag? Why wouldnt it be WHERE book_id = '1'? Am i slow?
no they said book_id=1 but we just ignored that and did the union with book_id, flag so it was union select * from those columns from the table books so it dumped everything and we grab the flag... it just wasn't necessary
One of the original language specs was adamant that it's pronounced S-Q-L, because they had started calling it SEQUEL but were threatened with a lawsuit from another company that had already trademarked the name
![Server-Side Request Forgery (SSRF) Detailed Walkthrough -- [TryHackMe LIVE!]](/img/1.gif)
Man, thanks for this, i had trouble with the last SQLi attempt using the user agent hehe
Great video, love that your curiosity makes you try more than what the room creator intended.
on update.php, none of the input fields have input validation...no 2nd order needed
1:13:17 Yo bro please respond i got two questions, why didn't you do it in the terminal would it still work curl -H "User-Agent: ' UNION SELECT...., and for the why is flag? Why wouldnt it be WHERE book_id = '1'?
Am i slow?
no they said book_id=1 but we just ignored that and did the union with
book_id, flag
so it was union select * from those columns from the table books
so it dumped everything and we grab the flag... it just wasn't necessary
One of the original language specs was adamant that it's pronounced S-Q-L, because they had started calling it SEQUEL but were threatened with a lawsuit from another company that had already trademarked the name
right on thanks Tyler
I had to use tun0 IP on my Parrot OS box to drop the out.txt
Can’t find the notes 😢
CHEF WUZ HERE!
Its highlighted i think Im slow