/quest-springboot-sql-injection

BankZecure: a fictional (and flawed) banking application

Primary LanguageTSQL

BankZecure Web Application

All the instructions are in the quest!

The fake customer accounts' credentials are listed here.

It was possible to change all passwords and email-addresses to the same value with ' OR 1=1 -- ;'