Demo: Exploiting a Blind XSS & Second Order SQL Injection

Robert Abela - Thu, 11 May 2017 -

During this Demo, our CEO Ferruh Mavituna explains in detail what Blind XSS and Second Order SQL Injection vulnerabilities are and shows how malicious hackers can exploit them.

Demo: Exploiting a Blind XSS & Second Order SQL Injection

Watch the Tech Segment from Paul’s Security Weekly show #512 for a live demo of how to exploit a Blind Cross-site Scripting (XSS) and a Second Order SQL Injection vulnerability.

The demos were delivered by our CEO Ferruh Mavituna. During the demos, Ferruh also explains all the technical details of how these vulnerabilities work and demonstrates how malicious hackers can exploit them to exfiltrate sensitive data from the vulnerable web application.