Metasploit has several modules that exploit SQL injection vulnerabilities, allowing us to test and verify whether our targets are susceptible to this attack.
SQL injection
Getting ready
For this recipe, we will install a vulnerable version of ATutor, a free open source LMS.
To download ATutor 2.2.1, go to https://www.exploit-db.com/exploits/39514/ and click the save button next to the vulnerable app:
To install ATutor, follow the installation instructions at the official site: http://www.atutor.ca/atutor/docs/installation.php.
How to do it...
This module exploits a...