Do you know the difference between in-band and blind SQLi, and why you don't need an error message to extract data through SQLi?
I wrote this one a while ago, but it's still one of my favourites. It even includes some fun interactive challenges! 😁
[$] https://securinglaravel.com/p/in-depth-sql-injection
#Laravel#PHP