Discussing on the Owasp A1 injection, But mainly focus on the SQL Injection, Types, And also how to exploit such a vulnerability if exist on a web application.
‘ or “ • Look for parameters using id=1 and so on. • And have a look at the type of SQL Message Error to identify what type. • Example: http://www.example.com/product?id=1’ OR http://www.example.com/download?id=1”
Despite New Frameworks and so on? The Answer Is Yes, Not Necessary The SQLi, But other Injection Attack types Under the OWASP A1 Like LDAP, Xpath Injection, LDAP Injection etc