Share
## https://sploitus.com/exploit?id=E69FE0C2-34F2-5B27-84F2-834C1EC6C122
# SQL Injection on DVWA (Low Security)

## Objective

The objective of this task was to demonstrate an SQL Injection vulnerability using Damn Vulnerable Web Application (DVWA) with the security level set to Low.

## Tools Used

- Kali Linux
- DVWA (Damn Vulnerable Web Application)
- Apache2
- MariaDB

## Steps Performed

1. Installed and configured DVWA.
2. Started Apache and MariaDB services.
3. Set the DVWA security level to Low.
4. Navigated to the SQL Injection module.
5. Entered the following payload:

```
1' OR '1'='1' #
```

6. Submitted the payload.
7. The application displayed all user records, demonstrating a successful SQL Injection attack.

## Result

The SQL Injection vulnerability allowed unauthorized retrieval of user information because the application did not properly validate user input.

## Files Included

- sql_injection_exploit.sh
- README.md
- Screenshots

## Disclaimer

This project was performed in a controlled laboratory environment for educational purposes only.