Skip to content

Releases: li-xin-yi/SQL-inject-demo

Adjust the layout to fit more devices

15 Jul 04:46
@li-xin-yi li-xin-yi
v0.0.4
add6f75
Compare
Choose a tag to compare
Adjust the layout to fit more devices Latest
Latest
  1. Adjust the layout
  2. Link enter with "Sign in" Button in password input of the main activity
Assets 3
Loading

Fix typo in database

22 Jun 04:02
@li-xin-yi li-xin-yi
v0.0.3
59c63a9
Compare
Choose a tag to compare
Fix typo in database
  1. Boby -> Bobby, Samy -> Sammy
  2. Change their corresponding password
  3. Modify the format of phone number
Assets 3
Loading

A SQL injection demo on mobile app with safe countermeasures

18 Jun 10:40
@li-xin-yi li-xin-yi
v0.0.2
0173990
Compare
Choose a tag to compare
A SQL injection demo on mobile app with safe countermeasures

image

Based on the previous version I developed a few days ago

  1. Add a safe mode as
query = "SELECT * FROM "+ TABLE_NAME + " WHERE NAME=? AND PASSWORD=?";
cursor = db.rawQuery(query, new String[]{username,password});

Instead of direct joining variables.

  1. Add a rest button to reset the polluted SQLite database as the initial table.
  2. Admin now can insert or delete employees in the database. I add this functionality for more flexible test and demo on custom data.
  3. Detailed instructions to explore this app can be found in this manual
Assets 3
Loading

base version

15 Jun 11:32
@li-xin-yi li-xin-yi
v0.0.1
6d048f0
Compare
Choose a tag to compare
base version Pre-release
Pre-release

Basic release

Assets 3
Loading