Note: This basic method works only for websites with extremely low security barriers. Websites with robust security details will not be susceptible to this kind of simple attack.
Provide wrong username and wrong password combination in its log in form. (e.g. : Username : me and Password: or 1=1 –) An error will occur saying wrong username and wrong password. Now be prepared because your experiment starts from here.
Step-2:Right click anywhere on that error page =>> go to view source.
Step-3:View the source code.
• Before this login information copy the URL of the site in which you are. (e.g. : http://www.targetwebsite.com/login……
Do this very carefully.—Your success in hacking the site depends upon how efficiently you delete the java script code that validates your account information.
Step-5:Take a close look for
_.input name=password type=password>[without quotes] -> replace with
See there if maximum length of password is less than 11 then increase it to 11 (e.g. : if then write ).
Step-6: Go to file => save as and save it anywhere in your hard disk with ext.html
Step-7: Reopen your target web page by double clicking chan.html file that you saved in your hard disk earlier
You see that some changes in current page as compared to original One. Dont worry.
Step8:Provide any username
[e.g.: hacker] and password [e.g.: or 1=1 –]
You have successfully cracked the above website and entered into the account of List user saved in the servers database.