Stealing NTLMv2 hash using SQL injection in File download functionality January 11, 2020January 11, 2020 PCIS Support Team Security Stealing NTLMv2 hash using SQL injection in File download functionality. Posted By CySec on January 12, 2020. submitted by /u/1046ica Related:Command injection prevention