๐ฉโโ๏ธ
Commander Eve
Mission Briefing
Mission
Agent, SQL injection is the #1 OWASP Top 10 vulnerability. Attackers inject malicious SQL through user inputs. Find the vulnerable query, exploit it, then fix it with parameterized queries.
Objectives
- Identify string concatenation vulnerability
- Craft injection payload
- Apply parameterized queries
- Verify fix blocks attack
vulnerable_app.py
Files
vulnerable_app.py
vulnerable_app.py
Test Results
test_sqli
Injection blocked