SQL INJECTION ATTACKS: A FOCUS ON USER-DEFINED FUNCTIONS IN MYSQL RELATIONAL DATABASE.

SQL INJECTION ATTACKS: A FOCUS ON USER-DEFINED FUNCTIONS IN MYSQL RELATIONAL DATABASE.

ABSTRACT This article seeks to show how an attacker can leverage the concept of SQL Injection attacks with a focus on manipulating user-defined functions found in MySQL relational database.The attacks simulated here were inspired by vulnerabilities found in 2 CTF style machines I encountered in preparation for my Offensive Security...Read more