hohn/codeql-dataflow-sql-injection
1
0
Fork 0
mirror of https://github.com/hohn/codeql-dataflow-sql-injection.git synced 2025-12-16 18:23:05 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
60f1f09c605d77b3630f3efa9908c64a85810c92
codeql-dataflow-sql-injection/README.org
Michael Hohn 41dd5e004e Add simple logging
2020-06-29 17:25:19 -07:00

431 B
Raw Blame History

SQL injection example

Setup and sample run 

  ./build.sh

  ./admin create-db
  ./admin show-db

  # Add regular user interactively
  ./add-user 2>> users.log
  ./admin show-db

  # Regular user
  echo "sample user" | ./add-user 2>> users.log
  ./admin show-db

  # Johnny Droptable
  echo "Johnny'); DROP TABLE users; -- " | ./add-user 2>> users.log

  ./admin show-db