Hello everyone,
The title says it, we’re going to sql inject a vulnerable Download PHP Script which will allow us later on to read files on the server.
This whole thing started with a Challenge posted on HF by SirRootALot and was only solved by 2 members including me which is kind of awkward and since a lot of people asked for an explanation I decided to make a tutorial.
Continue reading “Sql Injection in a Download PHP Script leading to LFI – Tutorial”
dotcppfile's Blog 