├── README.md ├── image ├── shl.jpg └── waf.jpg ├── config.php ├── db.sql ├── waf.php ├── insert.php ├── admin.php └── index.php /README.md: -------------------------------------------------------------------------------- 1 | # Simple-Labs-MySQL-Injection 2 | # Simple-Labs-MySQL-Injection 3 | -------------------------------------------------------------------------------- /image/shl.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/vsec7/Simple-MySQL-Injection-Labs/master/image/shl.jpg -------------------------------------------------------------------------------- /image/waf.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/vsec7/Simple-MySQL-Injection-Labs/master/image/waf.jpg -------------------------------------------------------------------------------- /config.php: -------------------------------------------------------------------------------- 1 | 403 Forbidden"); 23 | exit; 24 | } 25 | return $id; 26 | } 27 | 28 | function waf_block_or($id){ 29 | if(preg_match('/-|or/i', $id)) 30 | { 31 | die("

403 Forbidden

"); 32 | exit; 33 | } 34 | return $id; 35 | } 36 | -------------------------------------------------------------------------------- /insert.php: -------------------------------------------------------------------------------- 1 | 21 | 22 | 23 |
24 |

INPUT DATA

25 |
26 | 27 | 28 | 29 | 30 | 31 |
Title:
Image Link:
Quote:
32 |
33 | 34 | 35 | 54 | -------------------------------------------------------------------------------- /admin.php: -------------------------------------------------------------------------------- 1 | 7 | 8 | 9 | 10 | Administrator Page 11 | 12 |
13 |

Administrator Page

14 | 17 |
18 |
19 | 20 | 21 | 22 | 23 |
Username:
Password:
24 |
25 | Username/Password Salah !
"; 42 | } 43 | 44 | echo "
SELECT * FROM login WHERE `user`='$user' AND `pass`='$pass'"; 45 | } 46 | 47 | if(isset($_SESSION['shl'])){ 48 | echo "

Welcome ". $_SESSION['shl'][0]."


[LOGOUT]
"; 49 | echo "
SELECT * FROM login WHERE `user`='".$_SESSION['shl'][1]."' AND `pass`='".$_SESSION['shl'][2]."'"; 50 | } 51 | 52 | if(isset($_GET['logout'])){ 53 | session_destroy(); 54 | header('location: ?'); 55 | } 56 | -------------------------------------------------------------------------------- /index.php: -------------------------------------------------------------------------------- 1 | prepare("SELECT * FROM article WHERE id = ? LIMIT 0,1"); 31 | $stmt->bind_param('s', $id); 32 | $stmt->execute(); 33 | $row = $stmt->get_result()->fetch_assoc(); 34 | */ 35 | 36 | ?> 37 | 38 | 39 | 40 | <?=$row['title'];?> 41 | 42 | 43 | 44 |

45 |
46 |

[ HOME ] | [ INPUT ]

47 | 48 |

49 | QUERY : 50 |
51 | 52 | 57 | 58 | 59 | --------------------------------------------------------------------------------