SQL Injection demo

123.2K views

Open Source Your Knowledge, Become a Contributor

Technology knowledge has to be shared and made accessible for free. Join the movement.

Aside code editor demo

The content of this playground is identical to the one of the previous page. It is just a demo of the aside code presentation of a course.

Run application

Open Source Your Knowledge: become a Contributor and help others learn. Create New Content

// {
app.post('/login', function (req, res) {
    var username = req.body.username; // a valid username is admin
    var password = req.body.password; // a valid password is admin123
    var query = "SELECT name FROM user where username = '" + username + "' and password = '" + password + "'";
    console.log("username: " + username);
    console.log("password: " + password);
    console.log('query: ' + query);
    
    db.get(query , function(err, row) {
        if(err) {
            console.log('ERROR', err);
            res.redirect("/index.html#error");
        } else if (!row) {
            res.redirect("/index.html#unauthorized");
        } else {
            res.send('Hello <b>' + row.name + '</b><br /><a href="/index.html">Go back to login</a>');
        }
    });
});
app.listen(3000);

Open Source Your Knowledge, Become a Contributor

2/2 SQL Injection 2

Aside code editor demo

Ternary Operator

Rich Client Proof of Concept - X11 & fluxbox & Gimp

PYTHON: BEGINNER QUIZ (10 Questions)

PYTHON STRING METHODS: center(), rjust() and ljust().