Homeblog

SQL Injection Test Page

Posted June 9th, 2007 by yuli

I finally finished coding for the SQL injection test page. I coded it as a drupal plugin. This SQL Injection page could be used to evaluate SQL protection using GreenSQL database firewall. In addition all SQL queries blocked are shown in demo version of GreenSQL installed at this site. You can reach SQL injection test page using the following url:

http://www.greensql.net/sql-injection-test

When you will open this page you will get a regular login page. In order to proceed you need to provide username and password. Username and password are used by the backend script to execute the following SQL query:

SELECT * FROM user WHERE name = '$USERNAME' AND pwd=SHA('$PASSWORD')

You just need to provide username and password that will bypass GreenSQL protection engine.

Happy hacking !!!

Bookmark/Search this post with:
  • Delicious
  • Digg
  • StumbleUpon
  • Propeller
  • Reddit
  • Magnoliacom
  • Newsvine
  • Furl
  • Facebook
  • Google
  • Yahoo
Average: 4.8 (5 votes)

Comments

Hello can participate in the

On April 15th, 2008 niki89 says:

Hello can participate in the project?

I'm going to put this on my

On July 31st, 2008 jay1 says:

I'm going to put this on my petitionspot.com site, I've had 3 attacks this week alone.

Back to top