Hack and Bypass School Website Admin Login Page Using SQL
This article is for educational purpose.
This article helps us to understand how we can exploit administrator credentials without a password on a website. Before we exploit any website make sure we should go through some procedure as follow:
Google Dorking – It’s a technique where accidentally your data being exposed over the internet whether it will be a server log, files, or be a username you didn’t even know it will be your company information too, It will be a great opportunity for a hacker out there to grab the information if that accidentally exposed that can be diplomatic to figure it out. we can predict google Dorking by writing up some combination of strings as follow
Here we go I could found lots of websites that may have a chance for exploitation (sql-injection)
After a lot of struggles, I could find the Faculty Information System — Admin Login of an institution.
As above image FIGURE 1.1 we have an id and a password where a user tries to enter their id as well as their password if that matches it will redirect to the dashboard page of an admin if not it shows invalid password. Queries look at these in the sql backend database.
SELECT * FROM TABLE WHERE id=’ ’ and password= ‘ ‘
I tried to inject id with administrator with a single quote(-) with a comment sequence (- -) and a password with a single quote this will detach password and we can successfully login with administrator account. Queries look like these in the sql backend database.
Note: Don’t give space between the comment sequence
SELECT * FROM TABLE WHERE id=’administrator’- -’ and password=’ ’
Cheers finally we successfully login in with administrator without any password here the image of an admin dashboard. Recommended not for illegal stuff.
However, in modern and well-updated servers, SQL injection using dorks might not work, for more complex servers, the use of the burp suite to test endpoints, login forms, and database response to queries are recommended. The burp suite response can then be saved and parsed to sqlmap for automation.
Hire a certified professional hacker from CyberGeek, we house the best database hacker for school databases, hospital records, DUI, and other related database hacks. | Email: firstname.lastname@example.org