load-file

1 article
sort: new top best
clear filter
bug-bounty457 google362 microsoft310 facebook264 xss251 apple177 malware176 rce165 exploit141 cve111 account-takeover105 bragging-post102 phishing84 privilege-escalation82 csrf81 supply-chain68 stored-xss65 authentication-bypass64 dos62 browser61 reflected-xss57 react52 cloudflare50 reverse-engineering49 access-control48 input-validation48 cross-site-scripting48 aws47 node46 docker46 smart-contract45 ethereum44 sql-injection43 defi43 web-security43 ssrf42 web342 web-application41 oauth38 writeup37 race-condition36 burp-suite35 info-disclosure34 idor34 vulnerability-disclosure34 auth-bypass33 cloud33 html-injection33 buffer-overflow32 smart-contract-vulnerability32
0 5/10
SQLI with load file and into outfile
bug-bounty

A researcher discovered a SQL injection vulnerability in an affiliate form's email parameter, demonstrating information extraction via UNION-based injection and then escalating to arbitrary file read/write using MySQL's LOAD_FILE and INTO OUTFILE functions to exfiltrate /etc/passwd and create files on the server.

sql-injection load-file into-outfile union-based-sqli file-read file-write mysql bug-bounty burp-repeater information-disclosure
Mario Hackerone InfoSec Write-ups
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details