limit-clause

1 article
Sort: New Top Best
clear filter
bug-bounty622 facebook464 xss316 google151 rce105 microsoft97 apple65 csrf61 account-takeover54 web354 writeup51 exploit42 sqli41 cve37 ssrf35 cloudflare33 dos33 malware29 privilege-escalation29 defi28 smart-contract-vulnerability25 idor24 subdomain-takeover24 ethereum23 smart-contract23 clickjacking23 access-control21 node21 vulnerability-disclosure21 browser20 auth-bypass20 lfi19 aws19 remote-code-execution18 react17 cloud17 reverse-engineering16 cors16 docker16 oauth15 info-disclosure15 race-condition15 solidity14 authentication-bypass14 supply-chain13 phishing13 wordpress12 denial-of-service11 sql-injection11 delegatecall11
0
Exploiting tricky blind SQLI
exploit

A blind SQL injection vulnerability in a PostgreSQL LIMIT clause was exploited by using ASCII conversion to extract database information through response-based inference. The attacker created 127 albums and used nested `ascii(substr())` functions to convert extracted characters into numeric values that controlled the LIMIT clause row count, allowing information extraction by counting returned results.

sql-injection blind-sql-injection postgresql limit-clause error-based-injection ascii-function substr-function database-enumeration web-application-security pagination dbms-fingerprinting numeric-context-injection
PostgreSQL PHP Burp Intruder securityidiots Rahul Maini
noob.ninja · devanshbatham/Awesome-Bugbounty-Writeups · 5 hours ago · details