SQLi without spaces - CTF
Hi guys!! How are you?
I’m struggling with a CTF challenge from a event in my town, and I’m stuck in a SQLi vulnerability. Until now, I figured out there is a SQLi, but I can’t understand how can I exploit it.
May the experts can help me 😂😅
![No description](https://answer-overflow-discord-attachments.s3.amazonaws.com/1180230175057784892/46ae62b3-94a6-4b41-9ab9-8ef4b562d835.jpg)
1 Reply
You want to lookup how to make a post request. It can be done within burp or you could use other tools such as curl.
in this particular case you would have submitted your sqli in the employee_id field