Lab 01

This document describes SQL injection and how to prevent it. It contains the following key points: 1) SQL injection occurs when untrusted user input is inserted into an SQL statement without proper validation or encoding. This can allow attackers to manipulate queries or even run unauthorized code. 2) The document demonstrates how to create a stored procedure vulnerable to SQL injection and how attackers could exploit it to retrieve data they shouldn't have access to. 3) It then shows how to prevent SQL injection by using bind variables in queries instead of concatenating user input into the SQL statement. This protects the query from being manipulated by external values.

Uploaded by

Ibrahim qashta

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

28 views

Lab 01

Uploaded by

Ibrahim qashta

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 7

SQL injection lab

Chapter 2

Description:
• Kind of attack with adding and executing unintended code from untrusted
source
• Manipulate select statements
• Run DML or even DDL
• Run stored procedures

Firstly, SQL plus, using spool

 Open cmd
 Sqlplus username/password@connectionstring

SQL> Spool c:\labs\ch2\lab.txt

SQL> Select name from v$database;
SQL>Spool off;

Go to c:\labs\ch2\lab.txt
And open txt file to show the results.
SQL injection
Create new user (db_sec):
Cmd> sqlplus / as sysdba – or username/password
SQL> Spool c:\labs\ch2\lab.txt;

Sql> create user db_sec identified by db_sec;

Sql> grant connect, resource to db_sec;
Sql> connect db_sec@lab/db_sec;
Create table
SQL> CREATE TABLE SALARY_INJECTION_TB
(PERSON_ID NUMBER(9,0),
PERSON_NAME VARCHAR2(120),
SALARY NUMBER(11,3)
);
Insert Demo data
insert into salary_injec on_tb values (123,'khaled',3000);
insert into salary_injection_tb values (456,'ali',1500);
insert into salary_injection_tb values (789,'hassan',5400);
Sql> commit;

Query about insert data

SQL> select * from salary_injection_tb;
Create procedure get salary of employee

SQL> create or replace PROCEDURE get_salary (

P_PERSON_NAME IN SALARY_INJECTION_TB.PERSON_NAME%TYPE,
P_SALARY OUT SALARY_INJECTION_TB.SALARY%TYPE
)
IS
query VARCHAR2(2000);
BEGIN
query := 'SELECT SALARY FROM SALARY_INJECTION_TB WHERE
PERSON_NAME='''
|| P_PERSON_NAME ||''''
;
DBMS_OUTPUT.PUT_LINE('Query: ' || query);
EXECUTE IMMEDIATE query INTO P_SALARY ;
DBMS_OUTPUT.PUT_LINE('Sal: ' || P_SALARY );
EXCEPTION
WHEN NO_DATA_FOUND THEN
DBMS_OUTPUT.PUT_LINE('NO DATA FOUND');

END;
/

Set server output message on

SQL> SET SERVEROUTPUT ON;

SQL injection
SQL> DECLARE
v_salary salary_injection_tb.salary%type;
BEGIN
GET_SALARY('ali',v_salary);
GET_SALARY(' '' OR person_id=123 --',v_salary);
END;
/
Prevent SQL injection
SQL> create or replace PROCEDURE get_salary (
P_PERSON_NAME IN SALARY_INJECTION_TB.PERSON_NAME%TYPE,
P_SALARY OUT SALARY_INJECTION_TB.SALARY%TYPE
)
IS
v_query VARCHAR2(2000);
BEGIN
v_query := 'SELECT SALARY INTO :P_SALARY FROM SALARY_INJECTION_TB
WHERE PERSON_NAME=:P_PERSON_NAME';

DBMS_OUTPUT.PUT_LINE('Query: ' || v_query);

EXECUTE IMMEDIATE v_query INTO P_SALARY

USING P_PERSON_NAME ;

DBMS_OUTPUT.PUT_LINE('SaL: ' || P_SALARY );

EXCEPTION
WHEN NO_DATA_FOUND THEN
DBMS_OUTPUT.PUT_LINE('NO DATA FOUND');
END;
/

Try to inject SQL statements

SQL> DECLARE
v_salary salary_injection_tb.salary%type;
BEGIN
GET_SALARY('ali', v_salary);
GET_SALARY(' '' OR person_id=123 --', v_salary);
END;
/

DECLARE
P_PERSON_NAME VARCHAR2(120);
P_SALARY NUMBER;
BEGIN
P_PERSON_NAME := 'CCCC'' OR PERSON_ID = 123 --';

GET_SALARY(
P_PERSON_NAME => P_PERSON_NAME,
P_SALARY => P_SALARY
);

END;
/

PL1 and DB2
No ratings yet
PL1 and DB2
17 pages
PL/SQL
50% (6)
PL/SQL
3 pages
Write and Execute PL-SQL Functions and Procedure Programs
No ratings yet
Write and Execute PL-SQL Functions and Procedure Programs
11 pages
Advanced PLSQL - Updated
No ratings yet
Advanced PLSQL - Updated
81 pages
24MDT0082_VL2024250105844_AST05
No ratings yet
24MDT0082_VL2024250105844_AST05
9 pages
Koletzke Lock It Down PLSQL Security Features
No ratings yet
Koletzke Lock It Down PLSQL Security Features
17 pages
CURSORS
No ratings yet
CURSORS
42 pages
Modern College of Engineering, Pune: MCA Department A.Y.2023-24
No ratings yet
Modern College of Engineering, Pune: MCA Department A.Y.2023-24
3 pages
RDBMS Lab Record 2021-II BCA
No ratings yet
RDBMS Lab Record 2021-II BCA
24 pages
MCABC2P Lab Spiral_FINAL
No ratings yet
MCABC2P Lab Spiral_FINAL
31 pages
RDBMS Record Programs Only
No ratings yet
RDBMS Record Programs Only
43 pages
DBMS_assign6_SYCOC171
No ratings yet
DBMS_assign6_SYCOC171
10 pages
PL/SQL Programming Procedures and Cursors Lecture 4 (Part 2)
No ratings yet
PL/SQL Programming Procedures and Cursors Lecture 4 (Part 2)
24 pages
S.No. Date Name of The Experiment No. Marks Obtained Signature
No ratings yet
S.No. Date Name of The Experiment No. Marks Obtained Signature
60 pages
DBMS Practical Report
No ratings yet
DBMS Practical Report
94 pages
pl12
No ratings yet
pl12
1 page
PRACTICAL - 11 To 20
No ratings yet
PRACTICAL - 11 To 20
11 pages
Using Oracle PL/SQL: More Powerful Than SQL
No ratings yet
Using Oracle PL/SQL: More Powerful Than SQL
30 pages
Pl SQL Program With Output
No ratings yet
Pl SQL Program With Output
20 pages
VB Lab
No ratings yet
VB Lab
37 pages
PL SQL Program For Adam or Not
No ratings yet
PL SQL Program For Adam or Not
10 pages
(B) Alter (C) Drop: I.Data Definition Language
No ratings yet
(B) Alter (C) Drop: I.Data Definition Language
22 pages
Cursors
No ratings yet
Cursors
17 pages
PL/SQL To Find Minimum and Maximum Salary: Program Code
No ratings yet
PL/SQL To Find Minimum and Maximum Salary: Program Code
3 pages
4 Oracle PLSQL Transactions Dynamic SQL Debugging m4 Slides
No ratings yet
4 Oracle PLSQL Transactions Dynamic SQL Debugging m4 Slides
38 pages
Ass 3
No ratings yet
Ass 3
2 pages
DA4_ELA-1
No ratings yet
DA4_ELA-1
20 pages
DBMS(R23) LAB MANUAL -FINAL COPY (1)
No ratings yet
DBMS(R23) LAB MANUAL -FINAL COPY (1)
55 pages
PLSQL_Cursor_Interview_Questions
No ratings yet
PLSQL_Cursor_Interview_Questions
4 pages
Basics Oracle
No ratings yet
Basics Oracle
54 pages
Cs2258 Dbms Lab Manual PDF
No ratings yet
Cs2258 Dbms Lab Manual PDF
171 pages
Plsql-Hanfds On Assignment-Incomplete
No ratings yet
Plsql-Hanfds On Assignment-Incomplete
16 pages
Exp-1 (TCL)
No ratings yet
Exp-1 (TCL)
15 pages
PLSQL Queries Examples
No ratings yet
PLSQL Queries Examples
33 pages
exp11CURSOR
No ratings yet
exp11CURSOR
2 pages
Dbms Assignment
No ratings yet
Dbms Assignment
24 pages
Database Management Systems Lab Manual
No ratings yet
Database Management Systems Lab Manual
33 pages
Passport Automation System
0% (1)
Passport Automation System
170 pages
Practice On SQL
No ratings yet
Practice On SQL
15 pages
Introduction of SQL
No ratings yet
Introduction of SQL
28 pages
plsqlnotes (1)
No ratings yet
plsqlnotes (1)
27 pages
PL-SQL Lab Assignment 2
No ratings yet
PL-SQL Lab Assignment 2
4 pages
DB2 Application Programming
No ratings yet
DB2 Application Programming
45 pages
OPen Source
No ratings yet
OPen Source
27 pages
SQL Notes I.Data Definition Language
No ratings yet
SQL Notes I.Data Definition Language
19 pages
dbms lab
No ratings yet
dbms lab
10 pages
PL / SQL Cursors
No ratings yet
PL / SQL Cursors
11 pages
Sql Query
No ratings yet
Sql Query
3 pages
PL/SQL Tutorial (Examples) - Page 3 PL/SQL Block
No ratings yet
PL/SQL Tutorial (Examples) - Page 3 PL/SQL Block
21 pages
Java-U5-C_5.5_5.6_5.7_5
No ratings yet
Java-U5-C_5.5_5.6_5.7_5
21 pages
HU21CSEN0100752 DBMS LAB RECORD-compressed
No ratings yet
HU21CSEN0100752 DBMS LAB RECORD-compressed
53 pages
PL SQL
No ratings yet
PL SQL
3 pages
All_practicals_RDBMS
No ratings yet
All_practicals_RDBMS
18 pages
Task-10 On 12-12-2023
No ratings yet
Task-10 On 12-12-2023
8 pages
SQL Basics
No ratings yet
SQL Basics
4 pages
Cursors in PL-SQL
No ratings yet
Cursors in PL-SQL
10 pages
Dbms 6 Cursor
No ratings yet
Dbms 6 Cursor
4 pages
Blazor and API Example: Classroom Quiz Application
From Everand
Blazor and API Example: Classroom Quiz Application
Taurius Litvinavicius
No ratings yet
SQL Server: Tips and Tricks - 1
From Everand
SQL Server: Tips and Tricks - 1
Priyanka Agarwal
5/5 (1)
VPS Server Setup
From Everand
VPS Server Setup
L Mohan Arun
5/5 (1)
Sec Your Embed Sys Life Cycle
No ratings yet
Sec Your Embed Sys Life Cycle
5 pages
Dis11 Solutions
No ratings yet
Dis11 Solutions
6 pages
1 s2.0 S1877050922004422 Main
No ratings yet
1 s2.0 S1877050922004422 Main
8 pages
Electronics 11 03330 v2
No ratings yet
Electronics 11 03330 v2
41 pages
Phy Sec Pol
No ratings yet
Phy Sec Pol
20 pages
Sensors 23 04060
No ratings yet
Sensors 23 04060
26 pages
Symmetry 14 02304 With Cover
No ratings yet
Symmetry 14 02304 With Cover
12 pages
A Study On The Mobile Application Security Threats and Vulnerability Analysis Cases
No ratings yet
A Study On The Mobile Application Security Threats and Vulnerability Analysis Cases
8 pages
Literature Review Simple Definition
100% (1)
Literature Review Simple Definition
6 pages
Chapter 2. Arrays and Structures
No ratings yet
Chapter 2. Arrays and Structures
31 pages
Risk Management Docs
No ratings yet
Risk Management Docs
48 pages
Creating RAC12c Database From Command Line
No ratings yet
Creating RAC12c Database From Command Line
3 pages
NTPC Research Methodology
No ratings yet
NTPC Research Methodology
3 pages
Saint Francis of Assisi College: 96 Bayanan, Bacoor City, Cavite
No ratings yet
Saint Francis of Assisi College: 96 Bayanan, Bacoor City, Cavite
18 pages
Database Quiz
100% (1)
Database Quiz
12 pages
Handling Imbalance Data in Classification Model With Nominal Predictors
No ratings yet
Handling Imbalance Data in Classification Model With Nominal Predictors
5 pages
Azure Table Storage With Repository Pattern - Brett Hargreaves
No ratings yet
Azure Table Storage With Repository Pattern - Brett Hargreaves
24 pages
KPMG Data Extraction Tool for SAP Execution Guide v8.2
No ratings yet
KPMG Data Extraction Tool for SAP Execution Guide v8.2
48 pages
Debug Log
No ratings yet
Debug Log
380 pages
Pre PH.D Reg & Supple June 2015.Pdf - 260236
No ratings yet
Pre PH.D Reg & Supple June 2015.Pdf - 260236
19 pages
Unit 3 Data-Analytics
No ratings yet
Unit 3 Data-Analytics
48 pages
20
No ratings yet
20
110 pages
DDBMS Architecture
No ratings yet
DDBMS Architecture
11 pages
English For Thesis
90% (21)
English For Thesis
17 pages
CBI - Data Analytic Training For Health Worker - Draft 1.4
No ratings yet
CBI - Data Analytic Training For Health Worker - Draft 1.4
35 pages
PHP CRUD Par
No ratings yet
PHP CRUD Par
38 pages
57. Innovative work behavior through high-quality leadership
No ratings yet
57. Innovative work behavior through high-quality leadership
18 pages
InsightLens: Augmenting LLM-Powered Data Analysis with Interactive Insight Management and Navigation
No ratings yet
InsightLens: Augmenting LLM-Powered Data Analysis with Interactive Insight Management and Navigation
11 pages
Domain Owner Database
No ratings yet
Domain Owner Database
20 pages
ComputerScience MS
No ratings yet
ComputerScience MS
12 pages
PLSQL Quiz
No ratings yet
PLSQL Quiz
3 pages
Use Semantic Groups in DTPs
No ratings yet
Use Semantic Groups in DTPs
4 pages
Piaggio Customer and Dealer Management System - Ver0.1
No ratings yet
Piaggio Customer and Dealer Management System - Ver0.1
4 pages
BSC Complete
No ratings yet
BSC Complete
57 pages
Qualitative Methods and Data Analysis Using ATLAS - Ti - A Comprehensive Researchers' Manual (Springer Texts in Social Sciences) (2024, Springer)
No ratings yet
Qualitative Methods and Data Analysis Using ATLAS - Ti - A Comprehensive Researchers' Manual (Springer Texts in Social Sciences) (2024, Springer)
449 pages
Kendriya Vidyalaya J7 Sangathan Jaipur Region: Sample Question Paper (Term-I)
No ratings yet
Kendriya Vidyalaya J7 Sangathan Jaipur Region: Sample Question Paper (Term-I)
7 pages
Mic Fyugp Prospectus 2024
No ratings yet
Mic Fyugp Prospectus 2024
50 pages
European Soccer DB
No ratings yet
European Soccer DB
17 pages