From bf3c141f3c318b45b1f43d962623587ac26a92a2 Mon Sep 17 00:00:00 2001 From: Marcin Zelent Date: Wed, 30 May 2018 16:53:50 +0200 Subject: Added SQL injection example --- synopsis.tex | 76 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 76 insertions(+) (limited to 'synopsis.tex') diff --git a/synopsis.tex b/synopsis.tex index 0f86212..0c8a520 100644 --- a/synopsis.tex +++ b/synopsis.tex @@ -607,4 +607,80 @@ continue studying it in the future. \printbibliography \addcontentsline{toc}{section}{References} +\newpage + +\appendix +\section{SQL injection example} + +\subsection{HTML code} +\begin{minted}{html} + + + + Login page + + + + +

Login

+ + + +\end{minted} +\newpage + +\subsection{PHP code} +\begin{minted}{php} +open('users.db'); + } + } + + if(isset($_POST['email'], $_POST['pass'])) + { + $email = $_POST['email']; + $pass = $_POST['pass']; + + $db = new MyDB(); + + $sql = 'SELECT * FROM Users WHERE email=\''.$email. + '\' AND password=\''.$pass.'\''; + + $ret = $db->query($sql); + while($row = $ret->fetchArray(SQLITE3_ASSOC)) { + echo 'Logged in as '.$row['email'].'
'; + } + $db->close(); + } +?> +\end{minted} +\newpage + +\subsection{SQL code} +\begin{minted}{sql} +CREATE TABLE Users ( + email varchar(32), + password varchar(32) +); + +INSERT INTO Users VALUES('test@mail.com','password'); +INSERT INTO Users VALUES('marcin@mail.com','pass'); +\end{minted} +\newpage + \end{document} -- cgit v1.2.3