webProeasy

Слепая инъекция (Blind Injection)

bug-makers

Task: Node.js API injects user input directly into SQL WHERE clause, returning boolean true/false. Solution: boolean-based blind SQLi with binary search using unicode(substr()) to extract flag character by character.

$ ls tags/ techniques/

sqlite sqli nodejs express blind_sqli boolean_based

binary_search_extractionboolean_blind_sqlisqlite_unicode_substrdirect_where_injection

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[web][Pro]Совсем слепая инъекция (Completely Blind Injection)— bug-makers
[web][Pro]Покажи, если сможешь (Show me if you can)— bug-makers
[web][Pro]Обменник «У Апишечки»— bug-makers
[web][Pro]Блекджек на раздевание (Stripping Blackjack)— bug-makers
[web][Pro]No Quotes— uoftctf2026