Slide 21
Slide 21 text
VULNERABLE QUERY
• $query = "SELECT id,name,join_date,title FROM members WHERE name = '" .
$member_name . “’;”;
• SELECT id,name,join_date,title FROM members WHERE name = ‘Ergo’;
• SELECT id,name,join_date,title FROM members WHERE name = ‘Ergo’
UNION SELECT 1,2,3,4;
• SELECT id,name,join_date,title FROM members WHERE name = ‘Ergo’
UNION SELECT @@version,2,3,4;