SQLi runs the wrong query
I have made a website that is vulnerable against SQLi.
But when I run a GET Request with the SQLi '-- I get the wrong query output. Can someone help me with this?
This is my SQLi
This is how SQL runs the query.
The SQL query suppose to be different. It should have been: SELECT * FROM product WHERE id LIKE '%' which should output all the data from the product table.
Code snippet
This is correct and it's doing exactly what you told it to, given the input.
The GET request value is '-- and that is substituted for the variable $test in your SQL query string. But it doesn't remove what comes after the $test variable in the SQL query string.
Let me use some color-coding to show you:
SELECT * FROM product WHERE id LIKE '%
$test%'SELECT * FROM product WHERE id LIKE '%
'--%'
The characters -- form the start of an SQL comment, so anything after that is ignored after your SQL injection happens. The only functional part of the query is:
SELECT * FROM product WHERE id LIKE '%'
- Build a string by repeating a character N times
- Validate an array as "empty" if it has no elements or if all elements have no length
- phpunit runs test twice - gets two answers. Why?
- How can I make Laravel return a custom error for a JSON REST API
- regex for checking URL's wildcard for both subdomain and top level domain?
- Use Simple HTML Dom to parse HTML and generate an array of href values and plain text
- Generate an array of href strings from all <a> tags in an HTML document using Simple HTML DOM Parser
- Making POST application/json request with file_get_contents
- Woocommerce add to cart button redirect to checkout
- PHP form send email to multiple recipients
- How to loop over json-encoded data?
- Fill array with numbers adding up to a nominated total without exceeding item maximum
- Iterate over all last-day-of-the-month dates in a year
- Generate an associative 2d array with incremented column values using a flat array as first level keys
- Debug a single PHP file with $_GET parameters in NetBeans/Eclipse/PHPstorm (AJAX API)
- Put Values in Multidimensional Array keys
- Laravel queued jobs processed immediately even with a delay
- Error when calling function it self, VCS say="undefined function"
- How to truncate number 3 decimals
- PHP - How to get OAuth 2.0 Token
- Consume API endpoint from Laravel + Inertia App
- Generate real US street addresses for Selenium RC script
- Hour difference between 2 DateTime objects in Decimal Format
- Php update database if checkbox is not checked
- Group data from lines of a log file by one column and create subarrays from another column
- Use values of a flat array as the keys in every row of a 2d array
- Redis keys are not expiring - Laravel, Predis
- WooCommerce order status hook not triggering
- Execute a function on each element of an array
- Group a 2d array by year-month of a date column, add column of counts and create a subarray from a column of ids in each group