Web application security - the fast guide 1.1 | Page 126
Chapter 6 - Attack execution (2)
P a g e | 126
{
$logged_in=1;
}
else
{
$logged_in=0;
}
Attack:
Using the value of ( a’ || 1==1 || ‘a’==’a ) for user name and any password this
will result in executing the following code:
(this.username == ‘a’ || 1==1) || (‘a’==’a’ & this.password == ‘aaa’);
6.11 XPath injection
XPath is a language to query XML document where expressions represents a
sequence of steps that is required to navigate from one node of a document to
another.
The following is a listing of an XML based Data store
Listing
WilliamGatesMSRocks![email protected]5130 8190 3282 3515