#SQLi
6 postsBugForge - Weekly - Galaxy Dash (Mar 4, 2026)
This walkthrough demonstrates a UNION-based SQL injection vulnerability in a delivery booking application. The /api/bookings endpoint accepts a status query…
BugForge - Weekly - Mesanet Portal (Feb 11, 2026)
This walkthrough demonstrates a SQL injection vulnerability in a microservice-based portal that follows the API Gateway pattern. By analysing the application's…
BugForge - Daily - Copy Pasta (Jan 28, 2026)
The CopyPasta application's share functionality contains a SQL Injection vulnerability in the /api/snippets/share/:id endpoint, where the GUID parameter is…
BugForge - Daily - Cafe Club (Jan 11, 2026)
A SQL Injection vulnerability exists in the product API endpoint where the product ID parameter is directly concatenated into a SQLite query without…
BugForge - Daily - Cheesy Does It (Jan 5, 2026)
The login functionality is vulnerable to SQL Injection, allowing attackers to bypass authentication and gain unauthorized access to admin accounts. By…
BugForge - Daily - Ottergram (Jan 3, 2026)
A SQL Injection vulnerability was identified in the user profile retrieval functionality where user-supplied input is concatenated directly into SQL…