INTRODUCTION During a Red Team engagement that I did some time ago, I managed to get the credentials of an unprivileged user with access to the Back Office of a Prestashop instance. The Prestashop...

Context Microsoft SQL server provides two main authentication methods: SQL authentication mode Windows authentication mode There is also the possibility to use a mixture of both. SQL auth...