People who are not into cybersecurity but might have an idea or two about it still think that SQL injections are things of the past; but that's far from the truth.
First what are SQL injections? Well simply breaking it down into two words, you have SQL and injections. I'm sure many are familiar with SQL databases and all their related flavors. While injections come from the fact that you can ex-filtrate or in-filtrate data from/into them.
Ok, so you have a vulnerable web server with its database, and malicious users could cause harm by exploiting SQL injections.
Now, in this video I demonstrate how easy someone with harming intents could exploit this vulnerability. I'm using a vulnerable virtual box (so this is a safe and legal environment). Here I'm using SQLmap, a tool for convenient SQL injections, but if you're on your way to become a security professional, you should first learn how to do it manually, before getting to use automated tools.
To stay in touch with me, follow @cristi
Cristi Vlad Self-Experimenter and Author