MANUAL SQL INJECTION
How to perform SQLI On a live site
SQL injection is a technique where a malicious user can inject SQL Commands into an SQL statement via a web page.
An attacker could bypass authentication, access, modify and delete data within a database. In some cases, SQL Injection can even be used to execute commands on the operating system, potentially allowing an attacker to escalate to more damaging attacks inside of a network that sits behind a firewall.