Package illustrating a test case

Test case 1941

Type: source code
State: bad
Status: candidate
Language: PHP
Submission Date: 08 Mar 2007

Description

The test case shows an SQL Injection. The defense mechanism is the typecasting of the input variables.

Flaws

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Test Suites

Web Applications in PHP

Have any comments on this test case? Please, send us an email.