How it works...
Error-based SQLi and blind SQLi are, on the server side, the same vulnerability: the application doesn't sanitize inputs before using them to generate a query to the database. The difference between them lies in detection and exploitation.
In an error-based SQLi, we use the errors sent by the server to identify the type of query, tables, and column names.
On the other hand, when we try to exploit a blind injection, we need to harvest the information by asking questions such as is there a user whose name starts with "a"?, and then is there a user whose name starts with "aa"?, or as an SQLi: 'and name like 'a%, so it may take more time to detect and exploit.
Manually exploiting blind SQLi takes much more effort and time than ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access