From SQL Injection to Shell
This exercise explains how you can, from a SQL injection, gain access to the administration console, then in the administration console, how you can run commands on the system.
The ISO for this exercise can be downloaded by clicking here (169MB).
You can access the course for this exercise by clicking here
More details on how to access the online version of this exercise can be found here
More details on how to access the videos for this exercise can be found here