RCTF 2015 EasySQL: Exploiting Error-Based Injection via User Registration
The login form itself remains unresponsive to basic authentication attempts. After registering an arbitrary account and signing in, the application redirects to a path containing a title parameter and exposes a password-change feature. Attempting to inject inside the password-reset interface produces no discernible output, indicating the vulner ...
Posted on Sun, 10 May 2026 10:30:11 +0000 by MeOnTheW3