Skip to content

gdgd009xcd/WEBSAMPSQLINJ

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
 
 
 
 
 
 
 
 

Repository files navigation

WEBSAMPSQLINJ

A sample php web application with SQL injection everywhere :).
Simple sample web application for learning SQL injection. This sample application is a membership site for registering image files and their associated information. This sample application consists of following items:

  • PHP
  • Postgresql
  • Apache

Prerequisite

  • docker
  • docker compose

Sitemap

 *SQL - A PHP script that executes SQL statements. All SQL statements are vulnerable.
 *path - A php script that reads and displays the specified file
 
URL: http://localhost:8110/

1.index.php(login page)
  |
  |-[Regist New User]->2-1.newuser.php-[Confirm]->2-2.newuser.php-[Complete]->2-3.newuser.php(*SQL)->[Login]->index.php
  |
  |-[Login]-->3.mypage.php(*SQL)
  |             |
  |             |-[Modify user]-->3.1.moduser.php-[Confirm]->3.2.moduser.php-[Complete]->3.3.moduser.php(*SQL)-[Return to MYPAGE]->mypage.php
  |             |
  |             |-[Regist entry]-->4.1.inquiry.php-[Confirm]->4.2.confirm.php-[Complete]->4.3.complete.php(*SQL)-[Return to MYPAGE]->mypage.php
  |             |                                                                       |
  |             |                                                                       |-[xxx.img]->4.4.showfile.php(*path)
  |             |
  |             |-[Show your registered Entry list]->5.1.inquirylist.php(*SQL)-[Search]->5.2.inquirylist.php(*SQL)-[Return to MYPAGE]->mypage.php
  |             |                                            |                          |
  |             |                                            |---------[xxx.img]---------->5.3.showfile.php(*path)
  |             |
  |             |
  |             |-[Revoke user]-->6.1.removeuser.php-[Revoke]->6.2.removeuser.php(*SQL)-[Login]->index.php
  |
  |-[loginAPI]-->4.indexAPI.php-->mypageAPI.php

install & setup

  1. If your os does not have docker, Please read: https://docs.docker.com/get-docker/ and follow the instructions.

  2. If you does not have "docker compose" tool, Please read: https://docs.docker.com/compose/install/

    1. Check whether did you get the "docker compose" tool
    $ docker compose
      docker: 'compose' is not a docker command. <- no installed
        ..OR...
      Usage:  docker compose [OPTIONS] COMMAND <- You have it. installed.
    
    1. if you don't have compose tool, read https://docs.docker.com/compose/install/ carefully, and follow the instructions.
  3. download Source code WEBSAMPSQLINJ-N.N.N.tar.gz file from RELEASE page, and extract .tar.gz file, and create apache_php_pgsql/docker/db/data folder for database persistence

e.g. version number N.N.N is 0.5.0
$ tar xzvf WEBSAMPSQLINJ-0.5.0.tgz
$ cd WEBSAMPSQLINJ-0.5.0/apache_php_pgsql/docker/db
$ mkdir data
 

or clone git and create dir.

$ git clone https://github.com/gdgd009xcd/WEBSAMPSQLINJ.git
$ cd WEBSAMPSQLINJ/apache_php_pgsql/docker/db
$ mkdir data

start application

  1. if your os did'nt start docker, Start docker using your OS method
e.g. (on Ubuntu 22.04)
$ sudo systemctl start docker
  1. In apache_php_pgsql dir, execute following docker compose command.
 $ cd WEBSAMPSQLINJ/apache_php_pgsql
 $ sudo docker compose up -d

stop application

  1. In apache_php_pgsql dir, execute following docker compose command.
 $ cd WEBSAMPSQLINJ/apache_php_pgsql
 $ sudo docker compose down

URL of application

  1. Access http://localhost:8110/ in your browser.

Usage of application

  1. Access http://localhost:8110/help.html

Uninstall

  1. if you are running this application, you must stop application using above instructions. and simply delete WEBSAMPSQLINJ folder.
 e.g. (on ubuntu 22.04)
 $ sudo rm -fr WEBSAMPSQLINJ