mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-30 20:39:39 +02:00
[pitboss] phase 08: M6.5 — Patch-validation / fix-validation CI mode
This commit is contained in:
parent
25e8b0eb0e
commit
118cafa535
13 changed files with 1067 additions and 4 deletions
5
tests/fixtures/baseline_sqli_fixed/handler.py
vendored
Normal file
5
tests/fixtures/baseline_sqli_fixed/handler.py
vendored
Normal file
|
|
@ -0,0 +1,5 @@
|
|||
import sqlite3
|
||||
|
||||
def get_user(db, user_id):
|
||||
query = "SELECT * FROM users WHERE id = ?"
|
||||
return db.execute(query, (user_id,))
|
||||
12
tests/fixtures/baseline_sqli_new/handler.py
vendored
Normal file
12
tests/fixtures/baseline_sqli_new/handler.py
vendored
Normal file
|
|
@ -0,0 +1,12 @@
|
|||
import os
|
||||
import sqlite3
|
||||
|
||||
def get_user(db):
|
||||
user_id = os.getenv("USER_ID")
|
||||
query = "SELECT * FROM users WHERE id = ?"
|
||||
return db.execute(query, (user_id,))
|
||||
|
||||
def get_post(db):
|
||||
post_id = os.getenv("POST_ID")
|
||||
query = "SELECT * FROM posts WHERE id = " + post_id
|
||||
return db.execute(query)
|
||||
7
tests/fixtures/baseline_sqli_vuln/handler.py
vendored
Normal file
7
tests/fixtures/baseline_sqli_vuln/handler.py
vendored
Normal file
|
|
@ -0,0 +1,7 @@
|
|||
import os
|
||||
import sqlite3
|
||||
|
||||
def get_user(db):
|
||||
user_id = os.getenv("USER_ID")
|
||||
query = "SELECT * FROM users WHERE id = " + user_id
|
||||
return db.execute(query)
|
||||
Loading…
Add table
Add a link
Reference in a new issue