Intentional vulnerable #32

shwetarkadam · 2024-08-30T14:25:44Z

No description provided.

src/vulnerable-code/index.js

+app.get('/login', (req, res) => {
+  const user = req.query.username;
+  const pass = req.query.password;
+
+  // Concatenation using a different pattern to obscure SQL injection vulnerability
+  const query = ['SELECT * FROM users WHERE username = "', user, '" AND password = "', pass, '"'].join('');
+
+  db.get(query, (err, row) => {
+    if (err) {
+      res.status(500).send('Internal Server Error');
+    } else if (row) {
+      res.send('Login successful!');
+    } else {
+      res.send('Invalid credentials');
+    }
+  });
+});


src/vulnerable-code/index.js

+// Slightly obfuscated SQL Injection vulnerability
+app.get('/login', (req, res) => {
+  const user = req.query.username;
+  const pass = req.query.password;


src/vulnerable-code/index.js

+  // Concatenation using a different pattern to obscure SQL injection vulnerability
+  const query = ['SELECT * FROM users WHERE username = "', user, '" AND password = "', pass, '"'].join('');
+
+  db.get(query, (err, row) => {


src/vulnerable-code/index.js

+  };
+
+  // Render profile with potential XSS
+  res.send(renderProfile(username));


shwetarkadam added 4 commits August 27, 2024 13:21

add vulnerable code

cba1566

add v-2 code

12f3be0

Testing vulnerable code

8892a9f

Testing vulnerable code

059f775

github-advanced-security bot found potential problems Aug 30, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Intentional vulnerable #32

Intentional vulnerable #32

shwetarkadam commented Aug 30, 2024

Intentional vulnerable #32

Are you sure you want to change the base?

Intentional vulnerable #32

Conversation

shwetarkadam commented Aug 30, 2024