Ivan Ricart Borges - Test for didactic purposes of web pages vulnerables to SQL injection using dbo database user with xp_cmdshell execution permissions. Using patterns from Internet search engines to extract potentially vulnerable web addresses and test them by changing the GET parameters using invalid Transact-SQL conversion function to cause …
microsoft
c-sharp
search-engine
visual-studio
database
exploit
webserver
scanner
injection
iis
rce
vulnerability
sqlserver
dbo
transact-sql
xp-cmdshell
-
Updated
May 15, 2021 - C#