Home Hacking How to Test WordPress Website for SQL Injection using SQLmap
Hacking

How to Test WordPress Website for SQL Injection using SQLmap

In the twenty first century, internet evolved to so much advancements that every information is so easy as it’s shared over the websites (world wide web). It just changed the way of information is shared from the old fashioned way. Not just the information even the businesses are transformed to the online world like banking is on the go without even entering in the bank. It just opened wide doors for the opportunities while on the other hand it also opened the doors for the threats to someone’s privacy. Confidential information can be lost in result of a cyber attack or even business can be trashed down by these online attacks. There’s not a single system over the internet that can claim to be a hundred percent hack-free. So, to be on the safe side I will show in this article how to test your website for SQL injection vulnerability through SQLmap.

So, How to Test WordPress Website for SQL Injection Vulnerability using SQLmap

In order to get started testing sites for SQL, we need to meet the following requirements.

Requirements

  • Linux OS (Kali Linux is recommended)
  • SQLmap (Pre-built in Kali Linux OS)
  • WordPress Website

Instructions to follow

  • Well we got the columns for username and password which is a great sign for us. Now we need to grab the username and password from the admin’s username and password columns. Type python sqlmap.py -u http://target.com/index.php?id=4 -T admin -U test –dump.
  • Great..! We’ve got the username and password of the admin that we can use to login to the target website.

For wordpress login, admin page will look like;

http://target.com/wp-admin

Hope this tutorial cleared you How to Test WordPress Website for SQL Injection Vulnerability using SQLmap.

Author

Silence Dogood

Leave a Reply

%d bloggers like this: