Testing for Web Site Vulnerabilities - ' Testing for SQL Injection '
(
Page 2 of 4 )
Vulnerability">
Look for common scripting-language file extensions--Microsoft Active Server Pages (*.asp)
and Macromedia ColdFusion (*.cfm) scripts are usually the most vulnerable. The search field is your best bet; the Uniform Resource Locator (URL)
on the results page will likely contain a script. Also try hovering your cursor over links while watching the bottom status bar. If the status bar doesn't display URLs, click on links and watch the address bar until you find a URL that has parameters.
Once you are on a page whose URL contains parameters, you are ready to test for SQL Injection vulnerability. There are two methods.
Be sure to test each parameter value, one at a time, with each method.
Method 1. In the address bar URL, highlight a paramter value. Replace it with a single quote.
Method 2. Instead of highlighting the entire parameter value, click inside the value and type a single quote.
Step 4. Send request.
Step 4. Send request. ![>
<br><br>
Sometimes the error message does not display on screen. To find it, you may have to search the HTML source of the page. (View | Source in Microsoft Internet Explorer or
View | Page Source in Netscape.) A document will open. Use that program's search tool to look for either of these phrases:
<br><br>
<pre>Microsoft OLE DB</pre> or <pre>[ODBC]</pre>
<br>
<div class=](/util_get_image/1/0,3363,i=17473,00.gif)
Step 6. Learn more.
If you see one of the error messages shown or find Microsoft OLE DB or [ODBC] in the source code, then the site is vulnerable to SQL Injection. Read SPI Dynamics' 
Projects: Security 
