Infusion Technology Solutions Blog
Technology related solutions, tips, tricks, and other interesting topics
Basic SQL Injection Exploit with PHP
25 Feb 2008Here is an example of a basic login function which is taught in a lot of PHP tutorials. The purpose of this code is to prevent someone from viewing a web page unless they provide a valid username/password in a form. The username/password is stored in a MySQL database.
$username = $_POST["username"];
$password = $_POST["password"];$query = "SELECT * FROM users WHERE Username = '" . $username . "' AND Password = '" . $password . "'";
$result = mysql_query($query);
$validated = false;
while ($rs = mysql_fetch_array($result))
{ $validated = true; }
If a programmer does not do any input validation and uses the very basic username/password authentication example shown above, the following SQL code placed in the “password” field of a web application using code like this will usually give you access to the protected area:
foo' OR 'a'='a
The presence of this vulnerability in the code may allow a malicious
person to execute other SQL commands such as editing or deleting the
data in your database.
- Tags: exploit, hack, php, sql, sql injection
Comment Form
About this blog
This blog is about technology related topics. It will primarily contain problems and solutions to IT problems that I encounter on a day-to-day basis. In addition interesting things I come across either on or off the internet will be posted here as well. I will also include step-by-step tutorials to common tasks people may need to do with their computers.
Web Hosting Discount
-
Get the first month for only $0.01 using coupon code HGCOUPONBLOG. No contracts, cancel anytime.
Categories
- Apple (31)
- Electronics (10)
- Games (1)
- General IT Info (47)
- Information Security (12)
- Microsoft (11)
- Ramblings (3)
- The Net (5)
- Tutorials (3)
- Web Development (12)
- Alshe Dupur: Thanks for the great tips. I need this badly... :) [...]
- hosni: thank you , thank you , thank you [...]
- Rico: Any suggestions for when the slotid mkpassdb fix does not do the trick? [...]
- Neil: I think it is worth noting "udo sso_util configure -r YOUR.REALM.COM -a diradmin -p " The YOURREA [...]
- pearlbluesoul: I was looking for that article for a friend, but in reading it seems that the update for 10.6.7 serv [...]
- How To Allow MacOS X 10.4, 10.5, and 10.6 Client Computers To Update Against a MacOS X 10.6 Sofware Update Server Using a Single Common URL
- How to Reset the Password for an OS X Open Directory Mobile Account
- Terminal Command for Xserve Intel Hardware RAID Card
- How to Fix a Corrupted OS X Open Directory Account Password
- How to Configure Splunk to use a Web Proxy Server
- How to Get Trixbox Working Behind a NAT Firewall
- How to Backup and Restore a MySQL Database Using mysqldump
- How to Reset the Admin Password in ColdFusion MX 6
- How to Enable ReadyBoost for an ExpressCard SSD in Vista
- Sendmail Hangs When Starting Up or When Using It with PHP
Revolutionary One Time Password Device
