Skip to content

appsecco/sqlinjectionloginbypass

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
css
css
 
 
MIT-LICENSE.txt
MIT-LICENSE.txt
 
 
README.md
README.md
 
 
db_config.php
db_config.php
 
 
home.php
home.php
 
 
login.php
login.php
 
 
logout.php
logout.php
 
 
simpleloginsqli.sql
simpleloginsqli.sql
 
 

Repository files navigation

SQL Injection Login Bypass Example

This is a simple app written in PHP that can be used to demonstrate how SQL injection vulnerabilities can be used to bypass a login page.

Input

username: admin' -- // 
password: anythinghere

username: ' or 1 -- // 
password: anythinghere

username: suresh' -- // 
password: anythinghere

Valid accounts

admin:admin
bob:password
suresh:troll
ramesh:troll
alice:alice1
voldemort:horcrux
frodo:frodo
hodor:hodor
rhombus:rhombus

About

A simple app to demo SQL Injection login bypass

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

25 stars

Watchers

5 watching

Forks

17 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages