Lab #2 SQL injection vulnerability allowing login bypass

In this video, we cover lab #2 in the SQL injection track of the Web Security Academy. This lab contains a SQL injection vulnerability in the login function. To solve the lab, we perform a SQL injection attack that bypasses authentication and allows us to log into the application as the administrator user.

🔗 Links 🔗 ▬▬▬▬▬▬▬▬▬▬

Python script:

Notes.txt document:

Web Security Academy Lab Exercise:

Rana's Twitter account: