Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I’m in the middle of creating a forum plugin for PHPDevShell and I’ve gotten to the point where I would love to have some sort of pre-written text that you paste into an input field to see if it can “break” the code. For example the one of the simplest is just using various things like ' OR 1='1, So I’m hoping there is some sort of pre written text ment for input fields and text fields.
Well a quick google gave me this page: http://www.governmentsecurity.org/forum/topic/7794-sql-injection-strings/ which lists plenty of examples.
Another: http://www.governmentsecurity.org/forum/topic/344-sql-injection-basic/
Edit: But like Mr. Alien says if you escape your SQL properly you won’t have any problems so no need to test them all.