63 Blind SQL Injection Vulnerabilities exist on United Nation’s Website (www.un.org) Blind SQL injection is identical to normal SQL injection except that when an attacker attempts to exploit an application rather then getting a useful error message they get a generic page specified by the developer instead. This makes exploiting a potential attack more difficult but not impossible. An attacker can still steal data by asking a series of True and False questions through sql statements. To prevent from such types of Hacking attacks, Firewalls and similar intrusion detection mechanisms should be used against full-scale web attacks.
Source: https://thehackernews.com/2012/02/63-vulnerabilities-on-united-nation.html