Bug Bounty SQL Injection Waf Bypass Tips: In bug bounty programs, when you want to bypass a context, you need to know that context and technology very well, or you can quickly learn it by looking at the documentation. For example, understanding the regex logic in a blacklist or

SQL INJECTION (Login page bypass)

Day 1 of #100DaysOfCyberSecurity I did something on sql injection, learnt how it works , different ways to carry out sql injection and also test for vulnerabilities. @DonMoxie @thariskyjohn @cyberjeremiah @ireteeh @segoslavia

Post 16/30 : Quick SQLi OneLiner SQL Injection One-Liner waybackurls target[.]com | grep '=' | sort -u | nuclei -t ../fuzzing-templates/sqli -dast Working: This fetches all URLs with query parameters for the target domain using waybackurls, filters unique parameterized

RCE in FreePBX Endpoint through unauthenticated SQL injection (CVE-2025-57819) https://t.co/dvPIYaPnMJ Credits @watchtowrcyber #infosec

SQL INJECTION attack impact, vectors and types

From Default IIS Page to Critical SQL Injection https://t.co/iUxD0cygJ7

When you try to tweet SQL injection you get blocked by cloudflare 😅

SQL Injection Hackers Grand Entrance To Your Database

SQL Injection 🐸

🚨 3 critical/high FreePBX vulnerabilities disclosed CVE-2025-66039: Authentication bypass CVE-2025-61675: SQL injection CVE-2025-61678: File upload leading to RCE I've created detection scripts for these vulns: https://t.co/2dmklJha55 @Horizon3ai - https://t.co/nQOPyb6K4F

はてなブログに投稿しました SQL Injectionを安全に検証するために - よーでんのブログ https://t.co/PMmgxYRjS5 #はてなブログ

Burp AI 👉 SQLmap… all in seconds. We found an SQL injection vulnerability. Instead of rebuilding the request, Burp AI generated the exact SQLmap command with every header included. 🤯 Watch!

As promised my second writeup is live now. From Default IIS Page to Critical SQL Injection: https://t.co/5zBvWOAquR #BugBounty #hackerone #idor #sqlinjection #bugbountytip #xss #injection

SQL Injection (SQLi) UNION attack is a technique where an attacker uses the UNION SQL operator to combine their malicious query with a legitimate one. What's the goal? A 🧵

⚠️⚠️ CVE-2025-13372: Django Flaw Allows SQL Injection in PostgreSQL FilteredRelation 🔗FOFA Link: https://t.co/xChRxCUIUV 🎯1.7m+ Results are found on the https://t.co/pb16tGYaKe nearly year. FOFA Query: app="django" 🔖Refer: https://t.co/y27z0yBawy #OSINT #FOFA #CyberSecurity

My app servers are under SQL injection attack through the "Feedback" system. I am currently getting tons of Feedback emails with SQL injection code attached to them. I've logged in to the primary server with Claude Opus 4.5 to investigate

🚨Alert🚨 CVE-2025-61675&CVE-2025-61678&CVE-2025-66039 : Critical SQLi,File-Upload, and AUTHTYPE Bypass Flaws in FreePBX could Lead to RCE. -------------------- CVE-2025-61675: An authenticated SQL injection vulnerability CVE-2025-61678: An authenticated arbitrary file upload

SQL Injection (SQLi) | WordPress Security In 60 Seconds