SQL injection attack example

1. 1
0
0
1
0
1
0
0
1
0
1
0
1
0
0
1
0
0
1
1
0
0
1
0
1
0
1
1
0
1
1
0
0
1
0
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
1
0
0
1
0
1
1
0
1
✐
✑
✐
✑
✐
✐
✑
✐
✑
✐
✑
✐
✐
✑
✑
✑
✑
✑
✐
✑
✐
✐
✑
✑
✐
✑
✐
✐
✑
✐
✐
✐
✑
✐
✐
✑
✐
✑
✑
✑
✐
✐
✐
✑
✐
✐
✑
✑
✐
✐
✑
✑
✐
✐
✑
✑
✑
✑
✑
✐
✐
✑
✑
✑
✐
✐
✑
✑
✑
✐
✐
✑
✑
✐
✐
✑
✑
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✑
✐
✐
✑
✑
✑
✐
✑
✐
✐
✑
✐
✑
✐
✐
✑
✐
✑
✐
✐
✑
✑
✑
✑
✑
✐
✑
✐
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
0
1
0
0
1
✑
1
0
0
1
0
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
0
1
1
1
0
1
1
0
0
1
0
1
0
0
1
0
1
1
1
1
0
1
1
0
0
1
0
1
1
1
1
1
1
0
0
0
1
0
1
0
0
1
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
0
0
1
0
1
1
1
1
1
✑
✐
✐
✑
✐
✐
✑
✑
SQL injection

2. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
SQL injection
• Injection of an SQL query via an input from the
client application
• Vulnerability comes from the dynamic SQL request
construction

3. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
Cyber Attacks Statistics

4. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
Typical example
String loginQuery = “SELECT * FROM useraccounts WHERE userID = ‘“
+
request.getParameter(“userID”) + “‘ AND password = ‘“ +
request.getParameter(“password") + “‘“;
userID = ' or 1=1 --
password = doesNotMatter
SELECT * FROM useraccounts WHERE userID = '' or 1=1 -- AND
password='doesNotMatter'

5. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
Threat
• Execute SQL queries
• Select, Insert, Delete
• Explore error messages
• Column 'users.username' is invalid
• Identity theft
• Data leakage

6. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
Threat

7. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
Threat: camera

8. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
Threat: Swedish elections

9. 1
0
1
0
0
1
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
✐
✐
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
1
1
1
0
0
1
0
1
0
0
1
1
0
0
1
1
1
0
0
0
1
0
1
1
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
1
1
0
0
1
✑
✑
1
✑
✑
1
0
1
Android example
Curson curson = db.rawQuery(“select * from login where USERNAME = ‘“
+ param1 + “‘ and PASSWORD = ‘“ +param2 + “‘;”, null);
Curson curson = db.rawQuery(“select * from login where USERNAME = ?
and PASSWORD = ?;”, new String[]{param1, param2});
• Bad
• Good

10. 1
0
0
1
0
1
0
0
1
0
1
0
1
0
0
1
0
0
1
1
0
0
1
0
1
0
1
1
0
1
1
0
0
1
0
0
1
0
1
0
0
1
0
1
0
0
1
0
0
1
0
1
0
0
1
0
1
✐
✑
✐
✑
✐
✐
✑
✐
✑
✐
✑
✐
✐
✑
✑
✑
✑
✑
✐
✑
✐
✐
✑
✑
✐
✑
✐
✐
✑
✐
✐
✐
✑
✐
✐
✑
✐
✑
✑
✑
✐
✐
✐
✑
✐
✐
✑
✑
✐
✐
✑
✑
✐
✐
✑
✑
✑
✑
✑
✐
✐
✑
✑
✑
✐
✐
✑
✑
✑
✐
✐
✑
✑
✐
✐
✑
✑
✑
✐
✑
✐
✐
✑
✑
✐
✐
✑
✐
✑
✐
✐
✑
✑
✑
✐
✑
✐
✐
✑
✐
✑
✐
✐
✑
✑
✑
✐
✑
✐
✑
✐
✐
✑
✐
✐
✑
✐
✑
✑
0
1
0
0
1
✑
0
0
1
0
0
1
0
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
1
0
0
1
1
1
0
1
1
0
0
1
0
1
0
0
1
0
1
1
1
1
0
1
1
0
0
1
0
1
1
1
1
1
1
0
0
0
1
0
1
0
0
1
1
1
1
0
0
1
0
1
0
0
1
0
1
0
0
1
1
0
1
0
1
0
0
1
0
1
1
1
1
1
✑
✐
✐
✑
✑
Practical attack