Advanced SQL Injection Techniques

Second-order SQL injection stores payloads for later execution. Input might be safely stored but unsafely used in subsequent queries. Test by injecting payloads during registration or profile updates, then observing application behavior when stored data is displayed or processed. ZAP's session tracking helps identify these delayed vulnerabilities.

Stacked query injection executes multiple SQL statements when databases support it. Payloads like "; DROP TABLE users--" demonstrate severe potential impact. Test carefully in authorized environments as stacked queries can cause permanent damage. Not all database configurations allow stacked queries, but when enabled, impact is severe.

JSON and NoSQL injection represent evolving threats as applications adopt new technologies. While not traditional SQL injection, similar principles apply. ZAP includes some NoSQL payloads, but manual testing often proves necessary. Inject MongoDB operators like "$ne" or "$gt" into JSON parameters. Watch for behavior changes indicating successful injection into NoSQL queries.