From ee0bd3f7716546f679bd390d7b681fedf949b2fb Mon Sep 17 00:00:00 2001
From: Marcin Zelent <zelent.marcin@gmail.com>
Date: Wed, 30 May 2018 18:27:51 +0200
Subject: Added buffer overflow example

---
 sql-injection/index.html |  25 -------------------------
 sql-injection/login.php  |  23 -----------------------
 sql-injection/users.db   | Bin 8192 -> 0 bytes
 3 files changed, 48 deletions(-)
 delete mode 100644 sql-injection/index.html
 delete mode 100644 sql-injection/login.php
 delete mode 100644 sql-injection/users.db

(limited to 'sql-injection')

diff --git a/sql-injection/index.html b/sql-injection/index.html
deleted file mode 100644
index d3e760b..0000000
--- a/sql-injection/index.html
+++ /dev/null
@@ -1,25 +0,0 @@
-<!DOCTYPE HTML>
-<html>
-	<head>
-		<title>Login page</title>
-		<meta charset="utf-8" />
-<style>
-body {
-	text-align: center;
-}
-
-input {
-	margin-bottom: 5px;
-}
-
-</style>
-	</head>
-	<body>
-		<h1>Login</h1>
-		<form action="login.php" method="post">
-			<input type="text" name="email" placeholder="E-mail"><br>
-			<input type="password" name="pass" placeholder="Password"><br>
-			<input type="submit" value="Log in">
-		</form>
-	</body>
-</html>
diff --git a/sql-injection/login.php b/sql-injection/login.php
deleted file mode 100644
index 826c38c..0000000
--- a/sql-injection/login.php
+++ /dev/null
@@ -1,23 +0,0 @@
-<?php
-   class MyDB extends SQLite3 {
-      function __construct() {
-         $this->open('users.db');
-      }
-   }
-
-   if(isset($_POST['email'], $_POST['pass']))
-   {
-	$email = $_POST['email'];
-	$pass = $_POST['pass'];
-
-	$db = new MyDB();
-
-	$sql = 'SELECT * FROM Users WHERE email=\''.$email.'\' AND password=\''.$pass.'\'';
-
-	$ret = $db->query($sql);
-	while($row = $ret->fetchArray(SQLITE3_ASSOC)) {
-		echo 'Logged in as '.$row['email'].'<br>';
-	}
-	$db->close();
-   }
-?>
diff --git a/sql-injection/users.db b/sql-injection/users.db
deleted file mode 100644
index 9ddf64e..0000000
Binary files a/sql-injection/users.db and /dev/null differ
-- 
cgit v1.2.3