|
|
|
|
|
|
by z3t4
2307 days ago
|
|
|
I open dev tools (or dev proxy) to see all the connections the site makes, grab the url to the "page" AJAX call. Put ' (single quote) into the URL which then returns a SQL error. Then I make a SQL injection to make the page return everything. And search that. |
|
|