SQL Injection on [█████████]
High
S
Sony
Submitted None
Team Summary
Official summary from Sony
The researcher reported that the login form of a Sony endpoint was susceptible to an error-based SQL injection vulnerability. The researcher intercepted a login request using BurpSuite and then used SQLMap to discover the SQL injection. Once the SQL injection vulnerability was discovered, SQLMap was used to enumerate database names.
Actions:
Reported by
splint3rsec
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
SQL Injection