hohn/codeql-dataflow-sql-injection
1
0
Fork 0
mirror of https://github.com/hohn/codeql-dataflow-sql-injection.git synced 2025-12-16 02:03:05 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
41dd5e004e8f12422d03443b22e17d2f993e09f2
codeql-dataflow-sql-injection/README.org
Michael Hohn 41dd5e004e Add simple logging
2020-06-29 17:25:19 -07:00

431 B
Raw Blame History

SQL injection example

Setup and sample run 

  ./build.sh

  ./admin create-db
  ./admin show-db

  # Add regular user interactively
  ./add-user 2>> users.log
  ./admin show-db

  # Regular user
  echo "sample user" | ./add-user 2>> users.log
  ./admin show-db

  # Johnny Droptable
  echo "Johnny'); DROP TABLE users; -- " | ./add-user 2>> users.log

  ./admin show-db