Quote:
Originally Posted by Subreal
I mean that’s just basic knowledge anyone with a degree should know, not to store passwords in plain text in the db. When you enter your password it goes through a one way hash function, probably md5 since this site is old unless it has been updated , which is what it is stored in the db as.
And the usual path of the SQL injection is to bypass the login process, not actually get the password.
|
Trust me, most people have no idea wtf you're talking about
Please lmk if you find any vulnerabilities! I might consider a bug bounty