Simply enter the following into the input fields of a webpage:

a'

If the website returns a SQL error then this indicates it is vulnerable to SQL Injection attacks. NOTE: This is not the same as an error reported from the website itself, such as “That is not a valid username”.

The character ' is used because this is the character limiter in SQL. With ' you delimit strings and therefore you can test whether the strings are properly escaped in the targeted application or not. If they are not escaped directly you can end any string supplied to the application and add other SQL code after that.

The character ; is used to terminate SQL statements. If you can send the character ; to an application and it is not escaped outside a string (see above) then you can terminate any SQL statement and create a new one which leaves a security breach.

TODO…continue this