This is a writeup describing a SQL injection vulnerability in the 'url shortener script 1.0' due to improper sanitization of the 'id' parameter in show.php. The exploit demonstrates how an attacker can inject malicious SQL queries via the 'id' parameter.
Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:url shortener script 1.0
No auth needed
Prerequisites:Access to the vulnerable 'show.php' endpoint