The tester was able to execute an SQL injection by injecting a single quote, and later, he used SQL map to dump the whole database:
- AV:N: The hacker will connect through a network to execute the attack.
- AC:L: The complexity is very low, since it's a reflected XSS (we had an error message when we injected the single quote, ', into the URL query string).
- PR:N: No privilege is required.
- UI:R: The victim doesn't need to interact with the payload.
- S:C: The scope is not the web server only; the database is impacted, as well.
- C:H: Since the database contains confidential data.
- I:H: The hacker can change the data in the database by executing SQL commands remotely.
- A:H: The hacker can delete all of the records, making the database ...