In the last module, we learned how to use error-based techniques when the injection point is in the column parameter of the ORDER BY clause (ORDER by 

Now you can practice the same technique when injection is in the direction parameter of the ORDER BY statement (e.g. ORDER BY email 

ORDER BY -parameters can also be added after the direction, for example, this is a valid SQL statement:

For this reason, the attack is practically identical to the one practiced in the previous module, so take this module as a review. If you get stuck, refer to the instructions from the previous module.

In this lab, you will practice injecting the ORDER BY direction parameter using error-based techniques.

MySQLi ORDER BY Direction and Error Based Technique

## Injection ORDER BY -direction

In the last module, we learned how to use error-based techniques when the injection point is in the column parameter of the ORDER BY clause (ORDER by **email**, etc).

Now you can practice the same technique when injection is in the direction parameter of the ORDER BY statement (e.g. ORDER BY email **ASC**).

ORDER BY -parameters can also be added after the direction, for example, this is a valid SQL statement:

@embed b2ae5d03b71d

For this reason, the attack is practically identical to the one practiced in the previous module, so take this module as a review. If you get stuck, refer to the instructions from the previous module.

@exercise 5a9f526c221d


(MySQL) Adding ORDER BY clauses to (ASC/DESC)

SQL injection is probably the cause of the majority of serious data breaches, mainly because vulnerability is very likely in a large application if the technology choices are bad, and the result is usually leaking the entire database to the attacker.

SQL injection is likely the cause of the majority of serious data breaches, mainly because vulnerability is very likely in a large application if the technology choices are poor, and the consequence is usually the leakage of the entire database to the attacker.

Fundamentals

What are SQL Injections?

Intro

(MySQL) Changing WHERE clauses to bypass authentication (specific user)

(MySQL) Modifying WHERE clauses to bypass authorization

(MySQL) Using the UNION technique to steal data

(MySQL) Determining the structure of the schema

(MySQL) Injecting INSERT statements

(MySQL) Adding ORDER BY clauses to (ASC/DESC)

Injection ORDER BY -direction

Learn to hack — start here