SQL Injection Labs

MySQL

SQLi UNION BASED (GET)
SQLi UNION BASED (POST)
SQLi BLIND (GET)
SQLi BLIND (POST)
SQLi BLIND (POST) II
SQLi INSERT (POST)
SQLi INSERT (POST) II
SQLi Incorrect usage of UNION and ORDER BY (GET)
SQLi BLIND Cookie-based

Cross-site scripting Labs

Generic

XSS Reflected HTML Context
XSS Reflected Attribute Context
XSS Reflected URL Context
XSS Reflected JS Context
XSS Reflected PHP_SELF

DOM-Based

Call Untrusted URL To jQuery's $.get()
Call Untrusted URL To jQuery's $.ajax()
DOM-XSS Using jQuery html()
DOM-XSS Using jQuery append()
DOM-XSS Using jQuery prepend()
DOM-XSS Using jQuery before()
Prototype Pollution To XSS


Challenge(s)

1
2
3
4
5
6
7
8


Discord