Testing Skills » Database Testing » What Is Script Injection ? how we test Script Injections ?
0
What Is Script Injection ? how we test Script Injections ?
Posted 08-10-2009Reply
What Is Script Injection ? how we test Script Injections ?
SQL Injection is a security exploit in which the attacker injects specially crafted query through a web form input box to gain access into database
Programmers use sequential commands in their program making it easier for attacker to inject code while taking user input
Example see the below code,
var Shipcity;
ShipCity = Request.form ("ShipCity");
var sql = "select * from OrdersTable where ShipCity = '" + ShipCity + "'";
The user is prompted to enter the name of a city. If user enters Bangalore, the query assembled by the script looks similar to the following:
SELECT * FROM OrdersTable WHERE ShipCity = ‘Bangalore'
However, assume that the user enters the following:
Bangalore'; drop table OrdersTable–
In this case, the following query is assembled by the script:
SELECT * FROM OrdersTable WHERE ShipCity = ‘Bangalore';drop table OrdersTable--'
When SQL Server processes this statement, SQL Server will first select all records in OrdersTable where ShipCity is Bangalore. Then, SQL Server will drop OrdersTable.
SQL Injection - Safety measures
The fields which take input from the user are enclosed by a single quote (‘)
To test, enter (‘) as user name. If the following error message is displayed then the website is vulnerable to SQL Injection attack,
Microsoft OLE DB Provider for ODBC Drivers error '80040e14'
[Microsoft] [ODBC Microsoft Access Driver] Extra)
in query expression 'Userid='3306' or ('a'='a' AND Password=".
/_booking/login3.asp, line 49
Following to be considered when doing Database Testing,
1. Disabling verbose errors
2. Never trust user inputs. Always validate user input by testing type, length, format, and range
3. Not connecting to database using an admin level account
Programmers use sequential commands in their program making it easier for attacker to inject code while taking user input
Example see the below code,
var Shipcity;
ShipCity = Request.form ("ShipCity");
var sql = "select * from OrdersTable where ShipCity = '" + ShipCity + "'";
The user is prompted to enter the name of a city. If user enters Bangalore, the query assembled by the script looks similar to the following:
SELECT * FROM OrdersTable WHERE ShipCity = ‘Bangalore'
However, assume that the user enters the following:
Bangalore'; drop table OrdersTable–
In this case, the following query is assembled by the script:
SELECT * FROM OrdersTable WHERE ShipCity = ‘Bangalore';drop table OrdersTable--'
When SQL Server processes this statement, SQL Server will first select all records in OrdersTable where ShipCity is Bangalore. Then, SQL Server will drop OrdersTable.
SQL Injection - Safety measures
The fields which take input from the user are enclosed by a single quote (‘)
To test, enter (‘) as user name. If the following error message is displayed then the website is vulnerable to SQL Injection attack,
Microsoft OLE DB Provider for ODBC Drivers error '80040e14'
[Microsoft] [ODBC Microsoft Access Driver] Extra)
in query expression 'Userid='3306' or ('a'='a' AND Password=".
/_booking/login3.asp, line 49
Following to be considered when doing Database Testing,
1. Disabling verbose errors
2. Never trust user inputs. Always validate user input by testing type, length, format, and range
3. Not connecting to database using an admin level account
script injection like sql injection and asp, php injection. it searches the vulnerability of database. it used for vulnerability assessment.it also help in penetration testing. there lots of tools are there where you can find such kind of injection. tools like acuntix, sql scaner, retina etc
------------------------------------------------------------------------------------------------
Earn an Extra $1000 to $1200 per month doing Part Time Data Entry Jobs! Work from home data entry jobs to post simple data submissions on Internet. Make $1 per entry. Easy form filling, data entry and ad posting jobs. No selling, No phone calls, No Marketing. No Investment. Bi-weekly payments. Full Training Provided. Pls visit: [url=http://www.dataentrywork.net/?id=26201] Data-Entry [/url]
------------------------------------------------------------------------------------------------
Earn an Extra $1000 to $1200 per month doing Part Time Data Entry Jobs! Work from home data entry jobs to post simple data submissions on Internet. Make $1 per entry. Easy form filling, data entry and ad posting jobs. No selling, No phone calls, No Marketing. No Investment. Bi-weekly payments. Full Training Provided. Pls visit: [url=http://www.dataentrywork.net/?id=26201] Data-Entry [/url]
0
Recent Activity in Forums
 | Lisa posted a new forum topic Regression Testing ? in Regression Testing |
17 hours ago.
| Lisa replied to forum topic Test plan and Test Strategy in Black Box Testing |
17 hours ago.
| Lisa replied to forum topic Test plan and Test Strategy in Black Box Testing |
17 hours ago.
| Netra posted a new forum topic How to decidePriority and Serverity in Black Box Testing |
11 days ago.
| Shilpa posted a new forum topic High Level Scenarios for Coffee vending machine in Manual Testing |
01-04-2012.
| Atul posted a new forum topic For which ISTQB Advanced level exam shoud I appear? in Testing Certification - General |
23-02-2012.
| Netra posted a new forum topic Can 2 or more than 2 bugs have the same Test case ID in System Testing |
03-02-2012.
| Netra posted a new forum topic Involvement of developers/testers in testing process in Manual Testing |
02-02-2012.
| Netra posted a new forum topic How to determine defect type in the defect report in Manual Testing |
18-01-2012.
| Sumanth replied to forum topic TestLink the Open Source Test Management Tool in Test Management |
23-12-2011.
More forum activity »