# Part 1

- Discuss the basics of SQL and relational databases.
### SQL is a standard language for managing relational databases. It allows users to store, manipulate, and retrieve data efficiently through operations like SELECT, INSERT, UPDATE, and DELETE.
- Explain tables, rows, columns, and relationships between tables.
### In a database, tables store data in rows and columns. Relationships between tables link related information using keys like primary and foreign keys.

---

- Write basic SQL queries to select, insert, update, and delete data.

1. **Select Query**:
   ```sql
   SELECT * FROM tableName;
   ```

2. **Insert Query**:
   ```sql
   INSERT INTO tableName (column1, column2, ...) VALUES (value1, value2, ...);
   ```

3. **Update Query**:
   ```sql
   UPDATE tableName SET column1 = newValue WHERE condition;
   ```

4. **Delete Query**:
   ```sql
   DELETE FROM tableName WHERE condition;
   ```

---

- Explain what SQL injection is and how it can be exploited.

> An SQL Injection is a code injection technique that enters specific values into any provided entry field for execution. SQL Injections can be exploited to give the user complete access to the system or dump all information.

- Provide examples of vulnerable SQL code and how an attacker can exploit it.

In [None]:
SELECT * FROM users WHERE username = '$_POST[username]' AND password = '$_POST[password]'

> Here, if an attacker submits `' or '1'='1' --` as the username field and any value for the password field, it will satisfy the 1=1 condition and allow the user access.


- Discuss methods to prevent SQL injection, such as using prepared statements and parameterized queries.

> SQL injection is when bad actors sneak dangerous SQL commands into input fields to control database queries. To stop this, developers should use prepared statements or parameterized queries. These methods keep SQL commands separate from user input, treating input values as data instead of code that can run. Also, checking input and handling errors carefully helps find and handle suspicious input, making it harder for SQL injection attacks to succeed.

In [3]:
-- Create a table
CREATE TABLE Products (
    id INTEGER PRIMARY KEY,
    name TEXT,
    price REAL
);

-- Insert data into the table
INSERT INTO Products (name, price) VALUES ('Product1', 10.99);
INSERT INTO Products (name, price) VALUES ('Product2', 20.99);

-- Select data from the table
SELECT * FROM Products;

-- Update data in the table
UPDATE Products SET price = 15.99 WHERE name = 'Product1';

-- Delete data from the table
DELETE FROM Products WHERE name = 'Product2';

SyntaxError: invalid syntax (2677838111.py, line 1)

In [4]:
# Connect to SQLite database
import sqlite3

conn = sqlite3.connect('example.db')
cursor = conn.cursor()

# Create a table
cursor.execute('''
CREATE TABLE IF NOT EXISTS Products (
    id INTEGER PRIMARY KEY,
    name TEXT,
    price REAL
)
''')

# Insert data into the table
cursor.execute('''
INSERT INTO Products (name, price) VALUES (?, ?)
''', ('Product1', 10.99))

cursor.execute('''
INSERT INTO Products (name, price) VALUES (?, ?)
''', ('Product2', 20.99))

# Select data from the table
cursor.execute('SELECT * FROM Products')
rows = cursor.fetchall()
for row in rows:
    print(row)

# Update data in the table
cursor.execute('''
UPDATE Products SET price = ? WHERE name = ?
''', (15.99, 'Product1'))

# Delete data from the table
cursor.execute('''
DELETE FROM Products WHERE name = ?
''', ('Product2',))

conn.commit()
conn.close()

(1, 'Product1', 10.99)
(2, 'Product2', 20.99)


The python script seemed to have run very well, in 0.1s. It outputted the following:

> (1, 'Product1', 10.99)
> (2, 'Product2', 20.99)

The following are the steps it took to reach this point:
1. Creates Table
2. Inserts Data into the table
3. Selects the data
4. Updates the data and changes price
5. Deletes Product2