<div dir="ltr" style="text-align: left;" trbidi="on">
How to solve the third challenge: Content page #1<div>
<br /></div>
<div>
<br /><div class="separator" style="clear: both; text-align: center;">
<a href="http://3.bp.blogspot.com/-OzIkEoHSdBw/URha9AL6SII/AAAAAAAAFvc/NjT-8Yme1Fw/s1600/999.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://3.bp.blogspot.com/-OzIkEoHSdBw/URha9AL6SII/AAAAAAAAFvc/NjT-8Yme1Fw/s1600/999.png" /></a></div>
<br />
The ID parameter on the URL of the content page - 1 is vulnerable to SQL injection and thus can be leveraged to completely dump the database.<br />
<br />
Documentation: http://sechow.com/bricks/docs/content-page-1.html</div>
</div>

<br><br>--<br>
Posted By  Abhi M  to  <a href="http://owaspbricks.blogspot.com/2013/02/content-page-1-solved.html">OWASP Bricks</a>  on  2/10/2013 06:45:00 pm