π Detect and exploit SQL injection vulnerabilities with SQLiGo, a fast and reliable tool built for security professionals and penetration testers.
-
Updated
Feb 13, 2026 - Go
π Detect and exploit SQL injection vulnerabilities with SQLiGo, a fast and reliable tool built for security professionals and penetration testers.
Boolean & Time-based Blind SQL Injection β DVWA, SQLMap, Burp Suite | ESMT Dakar
Wrapper in Python to exploit CVE-2024-51428 in ZoneMinder using Blind SQL Injection using sqlmap, automating enumeration of DBs, tables, and data extraction with clean output.
Proof-of-concept exploit for CVE-2024-22120 that leverages time-based SQL injection and gopher-based SSRF to achieve remote code execution on vulnerable Zabbix servers for educational security research.
Automation scripts for PortSwigger Web Security Academy labs β SQL Injection, XSS, IDOR and more.
CVE-2026-39492 β WP Maps (wp-google-map-plugin) <= 4.9.1 Unauthenticated Blind SQL Injection Mass Scanner | sqlmap-style detection | backtick bypass esc_sql() | 100K+ installs
Hands-on boolean-based blind SQL injection lab: an intentionally vulnerable Go/MySQL app and a PoC exploit comparing three extraction techniques β substring (linear), bisection, and SQL-Anding (bitwise). Fully containerized with Docker Compose.
Auto-detecting blind SQL injection extractor - fingerprints the DBMS (PostgreSQL/MySQL/MSSQL/Oracle) and picks the fastest technique (error -> boolean -> time), then dumps the value. One command, no sqlmap.
π Blind SQL Injection β RCE exploit for Control Web Panel (CWP) β€ 0.9.8.1224 β userRes POST β INTO DUMPFILE β cwpsvc shell
Add a description, image, and links to the blind-sqli topic page so that developers can more easily learn about it.
To associate your repository with the blind-sqli topic, visit your repo's landing page and select "manage topics."