21Ağu
Blind MSSQL Injection – Stacked query in cookies
I am currently working on a bug bounty program and in one subdomain of my target there is a Blind SQL flaw in a cookie. The back-end is MSSQL/ASP.net however, since cookies are separated by semicolons ";" I can't find a way to try stacked queries.
I know the database instance is running as "sysadmin" user, so stacked queries would allow me to achieve RCE. Is it possible to stack queries in this scenario? If not, is it still possible to achieve RCE (error messages are not displayed)?
