dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added info to sql injections introduction to check out the CIA-Traid lesson if unfamiliar with it.

Browse Source
This commit is contained in:
Benedikt - Desktop 2018-12-17 14:57:24 +01:00 committed by Nanne Baars
parent 4878ea637e
commit 64d3cdfc86
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
webgoat-lessons/sql-injection/src/main/resources/lessonPlans/en/SqlInjection_introduction_content8.adoc
View File

@ -1,5 +1,5 @@
== Compromising confidentiality with String SQL Injection
If a system is vulnerable to SQL-Injections it is also easy to compromise aspects of the CIA-Triad.
If a system is vulnerable to SQL-Injections it is also easy to compromise aspects of the CIA-Triad _(if you are unfamiliar with the CIA-Triad check out the CIA-Triad lesson in the general category)_.
In the following three lessons, you will learn how to use simple SQL-Injection attacks to compromise each of the three. Per example by using _SQL String Injections_ or _query chaining_.
This lesson, we will take a look at *confidentiality*.