A simple web application designed to be vulnerable to all kinds of SQL attacks. It is not safe to deploy this in any production server, use it at your own risk. I am not responsible for any damages that you might experience.
- Install PHP 7.4.29
sudo apt install php7.4 php7.4-mysql php7.4-cli
- Install MySQL 8.0
sudo apt mysql-server
- Initialise the MySQL database
sudo vim /etc/mysql/mysql.conf.d/mysqld.cnf
# append the following to the [mysqld] section excluding this comment
[mysqld]
secure_file_priv = ""
sudo mysql < db/init_db.sql
- Run the application
cd sql-injection-php
php -S localhost:5000