Forum Thread : SQL Injection with 2 Parameters in LAN
I use cable broadband and my isp uses a captive portal to authenticate users. I was just examining the login page and saw that it php file to verify the user. like /user_check.php?user_id=id&pass=pass . I tried to access this php directly by providing my id and pass manually ...more