Burp Suite User Forum

Login to post

Blind SQL injection with conditional responses - on WebSecurity Academy

Mandalorian | Last updated: Sep 15, 2020 02:40AM UTC

The page on this lab always showing "Welcome back!" whether there is correct SQLi query or not even without using SQLi on the TrackingId cookies. It's hard to find the answer for this lab. Thank you. Best regards, Mandalorian22X

Ben, PortSwigger Agent | Last updated: Sep 15, 2020 01:05PM UTC

Hi, Are you able to provide details of the steps that you have taken so far to try and solve this? In addition, have you viewed the following video solution to see if that provides you with some additional hints: https://www.youtube.com/watch?v=-d-qkc-hKX8

You need to Log in to post a reply. Or register here, for free.