SQL Injection Lab - Database Version Query

Home

Lab Instructions

This application contains a SQL injection vulnerability in the product category filter.

You can use a UNION attack to retrieve the results from an injected query.

Your goal is to display the database version string.

For MySQL: Try using UNION SELECT @@version or VERSION()

For Microsoft SQL Server: Try using UNION SELECT @@version or VERSION()

Example payload: Gifts' UNION SELECT NULL, 'Version', 'Description', 0, 'Category', 1 --

Filter Products by Category

Database Version:

Products

Laptop

High performance laptop

Price: $1200.00

Category: Electronics

Released: Yes

Smartphone

Latest model smartphone

Price: $800.00

Category: Electronics

Released: Yes

Coffee Mug

Ceramic coffee mug

Price: $15.00

Category: Home

Released: Yes

Gift Card

Generic gift card

Price: $25.00

Category: Gifts

Released: Yes

Programming Book

Learn SQL injection

Price: $40.00

Category: Books

Released: Yes

Congratulations!

You've successfully retrieved the database version!

IDS{4c24a70d8e6436cb7bc3c986d54d7723}

Challenge completed. You have demonstrated how SQL injection can be used to extract database information.