PHP SQLi

SQL injection testing in a PHP webpage

I have created a setup consisting of a Docker Container running PHP, one running PostgreSQL and another one running PgAdmin. After using inference to learn about the database, I performed basic SQL injection attacks. The attacks violated successfully all three of the CIA properties.

You can test it for yourself on GitHub: php-SQLi-pentesting