SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #1796

Back to the previous page... Back to the previous page

Test Case IDDeprecated1796
Bad / Good / MixedBadBad test case
Author
Associations
Good pair: 1797  
Replaced by: 149095  
Test suite: 47  45  
Added byRomain Gaucher
LanguageC
Type of test caseSource Code
Input string\' OR 1=1 --
Expected Output
Instructions
Submission date2007-01-11
DescriptionThe SQL Injection is possible because the arguments are not validated before the MySQL query.
File(s)
Flaw

There is 1 comment
Have any comments on this test case? Please, .

File Contains:
CWE-089: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') on line(s): 52, 53