Update libinjection code (#1918)

Update libinjection code to the current master libinjection/libinjection@7e4b74e The goal is to finally fix #1820 See: libinjection/libinjection#33 Update the corpus of the libinjection fuzzers Close #1820
ntop · Apr 4, 2023 · d766237 · d766237
1 parent 4d11941
commit d766237
Show file tree

Hide file tree

Showing 497 changed files with 550 additions and 87 deletions.
diff --git a/fuzz/corpus/fuzz_libinjection/0 b/fuzz/corpus/fuzz_libinjection/0
@@ -0,0 +1 @@
+SELECT "first" "second";
diff --git a/fuzz/corpus/fuzz_libinjection/0d2f951037b2a99323a6f292bed158dcb84f8525 b/fuzz/corpus/fuzz_libinjection/0d2f951037b2a99323a6f292bed158dcb84f8525
diff --git a/fuzz/corpus/fuzz_libinjection/1 b/fuzz/corpus/fuzz_libinjection/1
@@ -0,0 +1 @@
+- SELECT 1;
diff --git a/fuzz/corpus/fuzz_libinjection/10 b/fuzz/corpus/fuzz_libinjection/10
@@ -1 +1 @@
-205.174.165.68/dv/vulnerabilities/sqli/?id=1%27+and+1%3D1%23&Submit=Submit
+123; /* junk */
diff --git a/fuzz/corpus/fuzz_libinjection/100 b/fuzz/corpus/fuzz_libinjection/100
@@ -0,0 +1 @@
+SELECT . `foo`
diff --git a/fuzz/corpus/fuzz_libinjection/101 b/fuzz/corpus/fuzz_libinjection/101
@@ -0,0 +1 @@
+SELECT AAAAAAAAAABBBBBBBBBBCCCCCCCCCC AAAAAAAAAABBBBBBBBBBCCCCCCCCCC
diff --git a/fuzz/corpus/fuzz_libinjection/102 b/fuzz/corpus/fuzz_libinjection/102
@@ -0,0 +1 @@
+SELECT AAAAAAAAAABBBBBBBBBBCCCCCCCCCC AAAAAAAAAABBBBBBBBBBCCCCCCCCCC
diff --git a/fuzz/corpus/fuzz_libinjection/103 b/fuzz/corpus/fuzz_libinjection/103
@@ -0,0 +1 @@
+1 - (1 - 1)
diff --git a/fuzz/corpus/fuzz_libinjection/104 b/fuzz/corpus/fuzz_libinjection/104
@@ -0,0 +1 @@
+1 - (1 - 1) + 2
diff --git a/fuzz/corpus/fuzz_libinjection/105 b/fuzz/corpus/fuzz_libinjection/105
@@ -0,0 +1 @@
+1 - (1 - 1) --
diff --git a/fuzz/corpus/fuzz_libinjection/106 b/fuzz/corpus/fuzz_libinjection/106
@@ -0,0 +1 @@
+1-(1-1)-2 --
diff --git a/fuzz/corpus/fuzz_libinjection/107 b/fuzz/corpus/fuzz_libinjection/107
@@ -0,0 +1 @@
+SELECT (BINARY BINARY 1);
diff --git a/fuzz/corpus/fuzz_libinjection/108 b/fuzz/corpus/fuzz_libinjection/108
@@ -0,0 +1 @@
+1 - binary ( 2 )
diff --git a/fuzz/corpus/fuzz_libinjection/109 b/fuzz/corpus/fuzz_libinjection/109
@@ -0,0 +1 @@
+1 - binary binary 2
diff --git a/fuzz/corpus/fuzz_libinjection/11 b/fuzz/corpus/fuzz_libinjection/11
@@ -1 +1 @@
-92.168.3.107/DVWA-master/vulnerabilities/sqli/?id=%3Fid%3Da%27+UNION+SELECT+%22text1%22%2C%22text2%22%3B--+-%26Submit%3DSubmit&Submit=Submit
+-1
diff --git a/fuzz/corpus/fuzz_libinjection/110 b/fuzz/corpus/fuzz_libinjection/110
@@ -0,0 +1 @@
+1 - binary binary (2)
diff --git a/fuzz/corpus/fuzz_libinjection/111 b/fuzz/corpus/fuzz_libinjection/111
@@ -0,0 +1 @@
+1 - (binary binary (2))
diff --git a/fuzz/corpus/fuzz_libinjection/112 b/fuzz/corpus/fuzz_libinjection/112
@@ -0,0 +1 @@
+SELECT LIKE("foo","bar")
diff --git a/fuzz/corpus/fuzz_libinjection/113 b/fuzz/corpus/fuzz_libinjection/113
@@ -0,0 +1 @@
+SELECT NOT LIKE("foo","bar")
diff --git a/fuzz/corpus/fuzz_libinjection/114 b/fuzz/corpus/fuzz_libinjection/114
@@ -0,0 +1 @@
+{``.``.id} UNION SELECT TABLE
diff --git a/fuzz/corpus/fuzz_libinjection/115 b/fuzz/corpus/fuzz_libinjection/115
@@ -0,0 +1 @@
+1 USER(1)
diff --git a/fuzz/corpus/fuzz_libinjection/116 b/fuzz/corpus/fuzz_libinjection/116
@@ -0,0 +1 @@
+1 USER()
diff --git a/fuzz/corpus/fuzz_libinjection/117 b/fuzz/corpus/fuzz_libinjection/117
@@ -0,0 +1 @@
+; if not((select serverproperty('isintegratedsecurityonly'))
diff --git a/fuzz/corpus/fuzz_libinjection/118 b/fuzz/corpus/fuzz_libinjection/118
@@ -0,0 +1 @@
+foo
diff --git a/fuzz/corpus/fuzz_libinjection/119 b/fuzz/corpus/fuzz_libinjection/119
@@ -0,0 +1 @@
+"foo"
diff --git a/fuzz/corpus/fuzz_libinjection/12 b/fuzz/corpus/fuzz_libinjection/12
@@ -0,0 +1 @@
+1+-1
diff --git a/fuzz/corpus/fuzz_libinjection/120 b/fuzz/corpus/fuzz_libinjection/120
@@ -0,0 +1 @@
+--EXPECTED--
diff --git a/fuzz/corpus/fuzz_libinjection/121 b/fuzz/corpus/fuzz_libinjection/121
@@ -0,0 +1 @@
+aa<foo>bb
diff --git a/fuzz/corpus/fuzz_libinjection/122 b/fuzz/corpus/fuzz_libinjection/122
@@ -0,0 +1 @@
+aa<foo>
diff --git a/fuzz/corpus/fuzz_libinjection/123 b/fuzz/corpus/fuzz_libinjection/123
@@ -0,0 +1 @@
+<foo>bb
diff --git a/fuzz/corpus/fuzz_libinjection/124 b/fuzz/corpus/fuzz_libinjection/124
@@ -0,0 +1 @@
+<foo>
diff --git a/fuzz/corpus/fuzz_libinjection/125 b/fuzz/corpus/fuzz_libinjection/125
@@ -0,0 +1 @@
+<foo          >
diff --git a/fuzz/corpus/fuzz_libinjection/126 b/fuzz/corpus/fuzz_libinjection/126
@@ -0,0 +1 @@
+<foo/>
diff --git a/fuzz/corpus/fuzz_libinjection/127 b/fuzz/corpus/fuzz_libinjection/127
@@ -0,0 +1 @@
+<foo   />
diff --git a/fuzz/corpus/fuzz_libinjection/128 b/fuzz/corpus/fuzz_libinjection/128
@@ -0,0 +1 @@
+<foo
diff --git a/fuzz/corpus/fuzz_libinjection/129 b/fuzz/corpus/fuzz_libinjection/129
@@ -0,0 +1 @@
+<foo   
diff --git a/fuzz/corpus/fuzz_libinjection/13 b/fuzz/corpus/fuzz_libinjection/13
@@ -0,0 +1 @@
+1+-+1
diff --git a/fuzz/corpus/fuzz_libinjection/130 b/fuzz/corpus/fuzz_libinjection/130
@@ -0,0 +1 @@
+<foo/
diff --git a/fuzz/corpus/fuzz_libinjection/131 b/fuzz/corpus/fuzz_libinjection/131
@@ -0,0 +1 @@
+<foo   /
diff --git a/fuzz/corpus/fuzz_libinjection/132 b/fuzz/corpus/fuzz_libinjection/132
@@ -0,0 +1 @@
+<foo  bar>
diff --git a/fuzz/corpus/fuzz_libinjection/133 b/fuzz/corpus/fuzz_libinjection/133
@@ -0,0 +1 @@
+<foo  bar
diff --git a/fuzz/corpus/fuzz_libinjection/134 b/fuzz/corpus/fuzz_libinjection/134
@@ -0,0 +1 @@
+<foo  bar  
diff --git a/fuzz/corpus/fuzz_libinjection/135 b/fuzz/corpus/fuzz_libinjection/135
@@ -0,0 +1 @@
+<foo  bar=yes>
diff --git a/fuzz/corpus/fuzz_libinjection/136 b/fuzz/corpus/fuzz_libinjection/136
@@ -0,0 +1 @@
+<foo  bar=yes  >
diff --git a/fuzz/corpus/fuzz_libinjection/137 b/fuzz/corpus/fuzz_libinjection/137
@@ -0,0 +1 @@
+<foo  bar=yes  
diff --git a/fuzz/corpus/fuzz_libinjection/138 b/fuzz/corpus/fuzz_libinjection/138
@@ -0,0 +1 @@
+<foo  bar=yes
diff --git a/fuzz/corpus/fuzz_libinjection/139 b/fuzz/corpus/fuzz_libinjection/139
@@ -0,0 +1 @@
+<foo  bar= 'yes' >
diff --git a/fuzz/corpus/fuzz_libinjection/14 b/fuzz/corpus/fuzz_libinjection/14
@@ -0,0 +1 @@
+1+(-1)
diff --git a/fuzz/corpus/fuzz_libinjection/140 b/fuzz/corpus/fuzz_libinjection/140
@@ -0,0 +1 @@
+<foo  bar= "yes" >
diff --git a/fuzz/corpus/fuzz_libinjection/141 b/fuzz/corpus/fuzz_libinjection/141
@@ -0,0 +1 @@
+<foo  bar=>
diff --git a/fuzz/corpus/fuzz_libinjection/142 b/fuzz/corpus/fuzz_libinjection/142
@@ -0,0 +1 @@
+<foo  bar =  >
diff --git a/fuzz/corpus/fuzz_libinjection/143 b/fuzz/corpus/fuzz_libinjection/143
@@ -0,0 +1 @@
+<foo  bar = '' >
diff --git a/fuzz/corpus/fuzz_libinjection/144 b/fuzz/corpus/fuzz_libinjection/144
@@ -0,0 +1 @@
+<foo  bar = 'xxx
diff --git a/fuzz/corpus/fuzz_libinjection/145 b/fuzz/corpus/fuzz_libinjection/145
@@ -0,0 +1 @@
+<foo  bar = '
diff --git a/fuzz/corpus/fuzz_libinjection/146 b/fuzz/corpus/fuzz_libinjection/146
@@ -0,0 +1 @@
+<foo  bar = "xxx"
diff --git a/fuzz/corpus/fuzz_libinjection/147 b/fuzz/corpus/fuzz_libinjection/147
@@ -0,0 +1 @@
+</foo>
diff --git a/fuzz/corpus/fuzz_libinjection/148 b/fuzz/corpus/fuzz_libinjection/148
@@ -0,0 +1 @@
+</foo  >
diff --git a/fuzz/corpus/fuzz_libinjection/149 b/fuzz/corpus/fuzz_libinjection/149
@@ -0,0 +1 @@
+<foo bar/>
diff --git a/fuzz/corpus/fuzz_libinjection/15 b/fuzz/corpus/fuzz_libinjection/15
@@ -0,0 +1 @@
+1 + foo
diff --git a/fuzz/corpus/fuzz_libinjection/150 b/fuzz/corpus/fuzz_libinjection/150
@@ -0,0 +1 @@
+<!--foo-->
diff --git a/fuzz/corpus/fuzz_libinjection/151 b/fuzz/corpus/fuzz_libinjection/151
@@ -0,0 +1 @@
+<!--foo
diff --git a/fuzz/corpus/fuzz_libinjection/152 b/fuzz/corpus/fuzz_libinjection/152
@@ -0,0 +1 @@
+<?foo
diff --git a/fuzz/corpus/fuzz_libinjection/153 b/fuzz/corpus/fuzz_libinjection/153
@@ -0,0 +1 @@
+<?foo>
diff --git a/fuzz/corpus/fuzz_libinjection/154 b/fuzz/corpus/fuzz_libinjection/154
@@ -0,0 +1 @@
+<foo bar="yes"/>
diff --git a/fuzz/corpus/fuzz_libinjection/155 b/fuzz/corpus/fuzz_libinjection/155
@@ -0,0 +1 @@
+<foo bar="yes">
diff --git a/fuzz/corpus/fuzz_libinjection/156 b/fuzz/corpus/fuzz_libinjection/156
@@ -0,0 +1 @@
+<1234 foo
diff --git a/fuzz/corpus/fuzz_libinjection/157 b/fuzz/corpus/fuzz_libinjection/157
@@ -0,0 +1 @@
+<!-- -x -- -! -->
diff --git a/fuzz/corpus/fuzz_libinjection/158 b/fuzz/corpus/fuzz_libinjection/158
@@ -0,0 +1 @@
+<!------->
diff --git a/fuzz/corpus/fuzz_libinjection/159 b/fuzz/corpus/fuzz_libinjection/159
@@ -0,0 +1 @@
+<!--foo--
diff --git a/fuzz/corpus/fuzz_libinjection/15b476de3caa02284e485d66b68081608ae4faf5 b/fuzz/corpus/fuzz_libinjection/15b476de3caa02284e485d66b68081608ae4faf5
diff --git a/fuzz/corpus/fuzz_libinjection/16 b/fuzz/corpus/fuzz_libinjection/16
@@ -0,0 +1 @@
+foo + 1
diff --git a/fuzz/corpus/fuzz_libinjection/160 b/fuzz/corpus/fuzz_libinjection/160
@@ -0,0 +1 @@
+<foo /junk>
diff --git a/fuzz/corpus/fuzz_libinjection/161 b/fuzz/corpus/fuzz_libinjection/161
@@ -0,0 +1 @@
+<foo bar="yes"isdir>
diff --git a/fuzz/corpus/fuzz_libinjection/162 b/fuzz/corpus/fuzz_libinjection/162
@@ -0,0 +1 @@
+<!DOCTYPE>
diff --git a/fuzz/corpus/fuzz_libinjection/163 b/fuzz/corpus/fuzz_libinjection/163
@@ -0,0 +1 @@
+<!DOCTYPE "stuff">
diff --git a/fuzz/corpus/fuzz_libinjection/164 b/fuzz/corpus/fuzz_libinjection/164
@@ -0,0 +1 @@
+<!DOCTYPE "stuff"
diff --git a/fuzz/corpus/fuzz_libinjection/165 b/fuzz/corpus/fuzz_libinjection/165
@@ -0,0 +1 @@
+<!doctype>
diff --git a/fuzz/corpus/fuzz_libinjection/166 b/fuzz/corpus/fuzz_libinjection/166
@@ -0,0 +1 @@
+<![CDATA[foobar]]>
diff --git a/fuzz/corpus/fuzz_libinjection/167 b/fuzz/corpus/fuzz_libinjection/167
@@ -0,0 +1 @@
+<![CDATA[foobar
diff --git a/fuzz/corpus/fuzz_libinjection/168 b/fuzz/corpus/fuzz_libinjection/168
@@ -0,0 +1 @@
+<![CDATA[foobar
diff --git a/fuzz/corpus/fuzz_libinjection/169 b/fuzz/corpus/fuzz_libinjection/169
@@ -0,0 +1 @@
+<![CDATA[foobar]]]>
diff --git a/fuzz/corpus/fuzz_libinjection/17 b/fuzz/corpus/fuzz_libinjection/17
@@ -0,0 +1 @@
+foo OR zap AND bar
diff --git a/fuzz/corpus/fuzz_libinjection/170 b/fuzz/corpus/fuzz_libinjection/170
@@ -0,0 +1 @@
+<![CDATA
diff --git a/fuzz/corpus/fuzz_libinjection/171 b/fuzz/corpus/fuzz_libinjection/171
@@ -0,0 +1 @@
+<![CDATA
diff --git a/fuzz/corpus/fuzz_libinjection/172 b/fuzz/corpus/fuzz_libinjection/172
@@ -0,0 +1 @@
+<![CDATA foo>
diff --git a/fuzz/corpus/fuzz_libinjection/173 b/fuzz/corpus/fuzz_libinjection/173
@@ -0,0 +1 @@
+<![CDATAX foo>
diff --git a/fuzz/corpus/fuzz_libinjection/174 b/fuzz/corpus/fuzz_libinjection/174
@@ -0,0 +1 @@
+<?import foo="bar"/>
diff --git a/fuzz/corpus/fuzz_libinjection/175 b/fuzz/corpus/fuzz_libinjection/175
@@ -0,0 +1 @@
+<% foo><x foo="%><script>
diff --git a/fuzz/corpus/fuzz_libinjection/176 b/fuzz/corpus/fuzz_libinjection/176
@@ -0,0 +1 @@
+<!ENTITY foo>
diff --git a/fuzz/corpus/fuzz_libinjection/177 b/fuzz/corpus/fuzz_libinjection/177
@@ -0,0 +1 @@
+<foo  bar   =   "xxx"
diff --git a/fuzz/corpus/fuzz_libinjection/178 b/fuzz/corpus/fuzz_libinjection/178
@@ -0,0 +1 @@
+<foo  bar   =   `xxx`
diff --git a/fuzz/corpus/fuzz_libinjection/179 b/fuzz/corpus/fuzz_libinjection/179
@@ -0,0 +1 @@
+<foo =_=xxx
diff --git a/fuzz/corpus/fuzz_libinjection/18 b/fuzz/corpus/fuzz_libinjection/18
@@ -0,0 +1 @@
+--INPUT--
diff --git a/fuzz/corpus/fuzz_libinjection/180 b/fuzz/corpus/fuzz_libinjection/180
@@ -0,0 +1 @@
+</ foo="><script>
diff --git a/fuzz/corpus/fuzz_libinjection/181 b/fuzz/corpus/fuzz_libinjection/181
@@ -0,0 +1 @@
+foo 'bar' "zap"
diff --git a/fuzz/corpus/fuzz_libinjection/182 b/fuzz/corpus/fuzz_libinjection/182
@@ -0,0 +1 @@
+foo 'bar'
diff --git a/fuzz/corpus/fuzz_libinjection/183 b/fuzz/corpus/fuzz_libinjection/183
@@ -0,0 +1 @@
+foo 'bar'
diff --git a/fuzz/corpus/fuzz_libinjection/184 b/fuzz/corpus/fuzz_libinjection/184
@@ -0,0 +1 @@
+1 = 1 OR 1
diff --git a/fuzz/corpus/fuzz_libinjection/185 b/fuzz/corpus/fuzz_libinjection/185
@@ -0,0 +1 @@
+1 = '1' OR 1
diff --git a/fuzz/corpus/fuzz_libinjection/186 b/fuzz/corpus/fuzz_libinjection/186
@@ -0,0 +1 @@
+1 = "1" OR 1
diff --git a/fuzz/corpus/fuzz_libinjection/187 b/fuzz/corpus/fuzz_libinjection/187
@@ -0,0 +1 @@
+1 /* /* */ */ 2
diff --git a/fuzz/corpus/fuzz_libinjection/188 b/fuzz/corpus/fuzz_libinjection/188
@@ -0,0 +1 @@
+1 = "1" /* 'blah' */  OR 1
diff --git a/fuzz/corpus/fuzz_libinjection/189 b/fuzz/corpus/fuzz_libinjection/189
@@ -0,0 +1 @@
+1 = '1' /* "blah" */  OR 1
diff --git a/fuzz/corpus/fuzz_libinjection/19 b/fuzz/corpus/fuzz_libinjection/19
@@ -0,0 +1 @@
+1 + foo + 1
diff --git a/fuzz/corpus/fuzz_libinjection/190 b/fuzz/corpus/fuzz_libinjection/190
@@ -0,0 +1 @@
+1# blah blah
diff --git a/fuzz/corpus/fuzz_libinjection/191 b/fuzz/corpus/fuzz_libinjection/191
@@ -0,0 +1 @@
+foo--
diff --git a/fuzz/corpus/fuzz_libinjection/192 b/fuzz/corpus/fuzz_libinjection/192
@@ -0,0 +1 @@
+foo/* yes this is sqli */
diff --git a/fuzz/corpus/fuzz_libinjection/193 b/fuzz/corpus/fuzz_libinjection/193
@@ -0,0 +1 @@
+1/* yes this is sqli */
diff --git a/fuzz/corpus/fuzz_libinjection/194 b/fuzz/corpus/fuzz_libinjection/194
@@ -0,0 +1 @@
+1--
diff --git a/fuzz/corpus/fuzz_libinjection/195 b/fuzz/corpus/fuzz_libinjection/195
@@ -0,0 +1 @@
+"foo" OR "BAR"
diff --git a/fuzz/corpus/fuzz_libinjection/196 b/fuzz/corpus/fuzz_libinjection/196
@@ -0,0 +1 @@
+foo" OR "BAR"
diff --git a/fuzz/corpus/fuzz_libinjection/197 b/fuzz/corpus/fuzz_libinjection/197
@@ -0,0 +1 @@
+"foo" OR "BAR
diff --git a/fuzz/corpus/fuzz_libinjection/198 b/fuzz/corpus/fuzz_libinjection/198
@@ -0,0 +1 @@
+foo' OR "BAR
diff --git a/fuzz/corpus/fuzz_libinjection/199 b/fuzz/corpus/fuzz_libinjection/199
@@ -0,0 +1 @@
+foo' OR 'BAR
diff --git a/fuzz/corpus/fuzz_libinjection/1a38ab89c73b1bb6a4d06294c94b413f9ad0822e b/fuzz/corpus/fuzz_libinjection/1a38ab89c73b1bb6a4d06294c94b413f9ad0822e
diff --git a/fuzz/corpus/fuzz_libinjection/2 b/fuzz/corpus/fuzz_libinjection/2
@@ -1 +1 @@
-192.168.3.107/DVWA-master/vulnerabilities/xss_d/?default=English%3Cscript%3Ealert(1)%3C/script%3E
+( SELECT 1 );
diff --git a/fuzz/corpus/fuzz_libinjection/20 b/fuzz/corpus/fuzz_libinjection/20
@@ -1 +1 @@
-/dv/vulnerabilities/xss_r/?name=%3Cscript%3Econsole.log%28%27JUL2D3WXHEGWRAFJE2PI7OS71Z4Z8RFUHXGNFLUFYVP6M3OL55%27%29%3Bconsole.log%28document.cookie%29%3B%3C%2Fscript%3E
+`foo`.`bar`
diff --git a/fuzz/corpus/fuzz_libinjection/200 b/fuzz/corpus/fuzz_libinjection/200
@@ -0,0 +1 @@
+foo' + 1
diff --git a/fuzz/corpus/fuzz_libinjection/201 b/fuzz/corpus/fuzz_libinjection/201
@@ -0,0 +1 @@
+'foo' + 1
diff --git a/fuzz/corpus/fuzz_libinjection/202 b/fuzz/corpus/fuzz_libinjection/202
@@ -0,0 +1 @@
+1" UNION ALL SELECT * FROM FOO
diff --git a/fuzz/corpus/fuzz_libinjection/203 b/fuzz/corpus/fuzz_libinjection/203
@@ -0,0 +1 @@
+1" INCH
diff --git a/fuzz/corpus/fuzz_libinjection/204 b/fuzz/corpus/fuzz_libinjection/204
@@ -0,0 +1 @@
+1' INCH
diff --git a/fuzz/corpus/fuzz_libinjection/205 b/fuzz/corpus/fuzz_libinjection/205
@@ -0,0 +1 @@
+--1 UNION ALL SELECT * FROM FOO
diff --git a/fuzz/corpus/fuzz_libinjection/206 b/fuzz/corpus/fuzz_libinjection/206
@@ -0,0 +1 @@
+1' == --1 OR 1
diff --git a/fuzz/corpus/fuzz_libinjection/207 b/fuzz/corpus/fuzz_libinjection/207
@@ -0,0 +1 @@
+1" UNION ALL SELECT --1 FROM FOO
diff --git a/fuzz/corpus/fuzz_libinjection/208 b/fuzz/corpus/fuzz_libinjection/208
@@ -0,0 +1 @@
+foo'--'bar'
diff --git a/fuzz/corpus/fuzz_libinjection/209 b/fuzz/corpus/fuzz_libinjection/209
@@ -0,0 +1 @@
+--blah
diff --git a/fuzz/corpus/fuzz_libinjection/21 b/fuzz/corpus/fuzz_libinjection/21
@@ -1 +1 @@
-/dv/vulnerabilities/sqli/?id=1%27+and+1%3D1+union+select+null%2C+table_name+from+information_schema.tables%23&Submit=Submit
+'foo' + zap + 'bar'
diff --git a/fuzz/corpus/fuzz_libinjection/210 b/fuzz/corpus/fuzz_libinjection/210
@@ -0,0 +1 @@
+1--sp_password
diff --git a/fuzz/corpus/fuzz_libinjection/211 b/fuzz/corpus/fuzz_libinjection/211
@@ -0,0 +1 @@
+x'--sp_password
diff --git a/fuzz/corpus/fuzz_libinjection/212 b/fuzz/corpus/fuzz_libinjection/212
@@ -0,0 +1 @@
+1*1--
diff --git a/fuzz/corpus/fuzz_libinjection/213 b/fuzz/corpus/fuzz_libinjection/213
@@ -0,0 +1 @@
+1 /*!anything*/
diff --git a/fuzz/corpus/fuzz_libinjection/214 b/fuzz/corpus/fuzz_libinjection/214
@@ -0,0 +1 @@
+1--0000000000111111111122222222223333333333 sp_password
diff --git a/fuzz/corpus/fuzz_libinjection/215 b/fuzz/corpus/fuzz_libinjection/215
@@ -0,0 +1 @@
+--EXPECTED--
diff --git a/fuzz/corpus/fuzz_libinjection/216 b/fuzz/corpus/fuzz_libinjection/216
@@ -0,0 +1 @@
+foo" and 1=1 `
diff --git a/fuzz/corpus/fuzz_libinjection/217 b/fuzz/corpus/fuzz_libinjection/217
@@ -0,0 +1 @@
+foo" and 1=1 `
diff --git a/fuzz/corpus/fuzz_libinjection/218 b/fuzz/corpus/fuzz_libinjection/218
@@ -0,0 +1 @@
+1 and @version
diff --git a/fuzz/corpus/fuzz_libinjection/219 b/fuzz/corpus/fuzz_libinjection/219
@@ -0,0 +1 @@
+1 and @version < 1
diff --git a/fuzz/corpus/fuzz_libinjection/22 b/fuzz/corpus/fuzz_libinjection/22
@@ -1 +1 @@
-/ntop/nDPI/actions/runs/4161701848/jobs/7199989034
+foo zap bar
diff --git a/fuzz/corpus/fuzz_libinjection/220 b/fuzz/corpus/fuzz_libinjection/220
@@ -0,0 +1 @@
+1 and "a" < "b"
diff --git a/fuzz/corpus/fuzz_libinjection/221 b/fuzz/corpus/fuzz_libinjection/221
@@ -0,0 +1 @@
+1 and "a"
diff --git a/fuzz/corpus/fuzz_libinjection/222 b/fuzz/corpus/fuzz_libinjection/222
@@ -0,0 +1 @@
+1 TOP 'foo'
diff --git a/fuzz/corpus/fuzz_libinjection/223 b/fuzz/corpus/fuzz_libinjection/223
@@ -0,0 +1 @@
+1 UNION
diff --git a/fuzz/corpus/fuzz_libinjection/224 b/fuzz/corpus/fuzz_libinjection/224
@@ -0,0 +1 @@
+1 ANALYZE 'foo'
diff --git a/fuzz/corpus/fuzz_libinjection/225 b/fuzz/corpus/fuzz_libinjection/225
@@ -0,0 +1 @@
+1 /* junk */ UNION
diff --git a/fuzz/corpus/fuzz_libinjection/226 b/fuzz/corpus/fuzz_libinjection/226
@@ -0,0 +1 @@
+1),(1)) UNION SELECT 1;
diff --git a/fuzz/corpus/fuzz_libinjection/227 b/fuzz/corpus/fuzz_libinjection/227
@@ -0,0 +1 @@
+foo - (bar) UNION SELECT 1
diff --git a/fuzz/corpus/fuzz_libinjection/228 b/fuzz/corpus/fuzz_libinjection/228
@@ -0,0 +1 @@
+foo - (1) UNION SELECT 1
diff --git a/fuzz/corpus/fuzz_libinjection/229 b/fuzz/corpus/fuzz_libinjection/229
@@ -0,0 +1 @@
+1, -sin(1)) UNION SELECT 1
diff --git a/fuzz/corpus/fuzz_libinjection/23 b/fuzz/corpus/fuzz_libinjection/23
@@ -0,0 +1 @@
+--EXPECTED--
diff --git a/fuzz/corpus/fuzz_libinjection/230 b/fuzz/corpus/fuzz_libinjection/230
@@ -0,0 +1 @@
+{``.``.id} UNION SELECT table_name from information_schemas LIMIT 1
diff --git a/fuzz/corpus/fuzz_libinjection/231 b/fuzz/corpus/fuzz_libinjection/231
@@ -0,0 +1 @@
+select 1,'''',2;
diff --git a/fuzz/corpus/fuzz_libinjection/232 b/fuzz/corpus/fuzz_libinjection/232
@@ -0,0 +1 @@
+select 1,'\\\\',2;
diff --git a/fuzz/corpus/fuzz_libinjection/233 b/fuzz/corpus/fuzz_libinjection/233
@@ -0,0 +1 @@
+SELECT `version`();
diff --git a/fuzz/corpus/fuzz_libinjection/234 b/fuzz/corpus/fuzz_libinjection/234
@@ -0,0 +1 @@
+SELECT `select`;
diff --git a/fuzz/corpus/fuzz_libinjection/235 b/fuzz/corpus/fuzz_libinjection/235
@@ -0,0 +1 @@
+SELECT foo.`select`;
diff --git a/fuzz/corpus/fuzz_libinjection/236 b/fuzz/corpus/fuzz_libinjection/236
@@ -0,0 +1 @@
+SELECT `foo`.`bar`;
diff --git a/fuzz/corpus/fuzz_libinjection/237 b/fuzz/corpus/fuzz_libinjection/237
@@ -0,0 +1 @@
+SELECT `foo`.bar;
diff --git a/fuzz/corpus/fuzz_libinjection/238 b/fuzz/corpus/fuzz_libinjection/238
@@ -0,0 +1 @@
+SELECT @@`version`;
diff --git a/fuzz/corpus/fuzz_libinjection/239 b/fuzz/corpus/fuzz_libinjection/239
@@ -0,0 +1 @@
+SELECT @`version`;
diff --git a/fuzz/corpus/fuzz_libinjection/24 b/fuzz/corpus/fuzz_libinjection/24
@@ -0,0 +1 @@
+UNION
diff --git a/fuzz/corpus/fuzz_libinjection/240 b/fuzz/corpus/fuzz_libinjection/240
@@ -0,0 +1 @@
+SELECT @`foo``bar`;
diff --git a/fuzz/corpus/fuzz_libinjection/241 b/fuzz/corpus/fuzz_libinjection/241
@@ -0,0 +1 @@
+--INPUT--
diff --git a/fuzz/corpus/fuzz_libinjection/242 b/fuzz/corpus/fuzz_libinjection/242
@@ -0,0 +1 @@
+and code-coverage tests
diff --git a/fuzz/corpus/fuzz_libinjection/243 b/fuzz/corpus/fuzz_libinjection/243
@@ -0,0 +1 @@
+--INPUT--
diff --git a/fuzz/corpus/fuzz_libinjection/244 b/fuzz/corpus/fuzz_libinjection/244
@@ -0,0 +1 @@
+--INPUT--
diff --git a/fuzz/corpus/fuzz_libinjection/245 b/fuzz/corpus/fuzz_libinjection/245
@@ -0,0 +1 @@
+SELECT { foo 1 };
diff --git a/fuzz/corpus/fuzz_libinjection/246 b/fuzz/corpus/fuzz_libinjection/246
@@ -0,0 +1 @@
+SELECT{ foo 1 };
diff --git a/fuzz/corpus/fuzz_libinjection/247 b/fuzz/corpus/fuzz_libinjection/247
@@ -0,0 +1 @@
+SELECT \N;
diff --git a/fuzz/corpus/fuzz_libinjection/248 b/fuzz/corpus/fuzz_libinjection/248
@@ -0,0 +1 @@
+SELECT \X;
diff --git a/fuzz/corpus/fuzz_libinjection/249 b/fuzz/corpus/fuzz_libinjection/249
@@ -0,0 +1 @@
+SELECT \
diff --git a/fuzz/corpus/fuzz_libinjection/25 b/fuzz/corpus/fuzz_libinjection/25
@@ -0,0 +1 @@
+UNION ALL
diff --git a/fuzz/corpus/fuzz_libinjection/250 b/fuzz/corpus/fuzz_libinjection/250
@@ -0,0 +1 @@
+SELECT [1];
diff --git a/fuzz/corpus/fuzz_libinjection/251 b/fuzz/corpus/fuzz_libinjection/251
@@ -0,0 +1 @@
+SELECT \ % 1;
diff --git a/fuzz/corpus/fuzz_libinjection/252 b/fuzz/corpus/fuzz_libinjection/252
@@ -0,0 +1 @@
+SELECT ]
diff --git a/fuzz/corpus/fuzz_libinjection/253 b/fuzz/corpus/fuzz_libinjection/253
@@ -0,0 +1 @@
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 4
diff --git a/fuzz/corpus/fuzz_libinjection/254 b/fuzz/corpus/fuzz_libinjection/254
@@ -0,0 +1 @@
+SELECT AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABBBBBBBBBB;
diff --git a/fuzz/corpus/fuzz_libinjection/255 b/fuzz/corpus/fuzz_libinjection/255
@@ -0,0 +1 @@
+SELECT '1234567890123456789012345678901234567890';
diff --git a/fuzz/corpus/fuzz_libinjection/256 b/fuzz/corpus/fuzz_libinjection/256
@@ -0,0 +1 @@
+1 -- 0000000000111111111122222222223333333333
diff --git a/fuzz/corpus/fuzz_libinjection/257 b/fuzz/corpus/fuzz_libinjection/257
@@ -0,0 +1 @@
+SELECT 1 /* 2 */;
diff --git a/fuzz/corpus/fuzz_libinjection/258 b/fuzz/corpus/fuzz_libinjection/258
@@ -0,0 +1 @@
+SELECT 1 /* 2
diff --git a/fuzz/corpus/fuzz_libinjection/259 b/fuzz/corpus/fuzz_libinjection/259
@@ -0,0 +1 @@
+SELECT 1 /* 2 */
diff --git a/fuzz/corpus/fuzz_libinjection/26 b/fuzz/corpus/fuzz_libinjection/26
@@ -0,0 +1 @@
+UNION /* foo */ALL
diff --git a/fuzz/corpus/fuzz_libinjection/260 b/fuzz/corpus/fuzz_libinjection/260
@@ -0,0 +1 @@
+SELECT 1 /*
diff --git a/fuzz/corpus/fuzz_libinjection/261 b/fuzz/corpus/fuzz_libinjection/261
@@ -0,0 +1 @@
+SELECT 1 /
diff --git a/fuzz/corpus/fuzz_libinjection/262 b/fuzz/corpus/fuzz_libinjection/262
@@ -0,0 +1 @@
+/* foo **/1
diff --git a/fuzz/corpus/fuzz_libinjection/263 b/fuzz/corpus/fuzz_libinjection/263
@@ -0,0 +1 @@
+SELECT /* FOO /* BAR */ JUNK */
diff --git a/fuzz/corpus/fuzz_libinjection/264 b/fuzz/corpus/fuzz_libinjection/264
@@ -0,0 +1 @@
+SELECT /* FOO /*/ BAR */
diff --git a/fuzz/corpus/fuzz_libinjection/265 b/fuzz/corpus/fuzz_libinjection/265
@@ -0,0 +1 @@
+SELECT 1 --
diff --git a/fuzz/corpus/fuzz_libinjection/266 b/fuzz/corpus/fuzz_libinjection/266
@@ -0,0 +1 @@
+SELECT 1 --sp_password
diff --git a/fuzz/corpus/fuzz_libinjection/267 b/fuzz/corpus/fuzz_libinjection/267
@@ -0,0 +1 @@
+SELECT 1 -- ABCD
diff --git a/fuzz/corpus/fuzz_libinjection/268 b/fuzz/corpus/fuzz_libinjection/268
@@ -0,0 +1 @@
+SELECT 1 -- ABCD
diff --git a/fuzz/corpus/fuzz_libinjection/269 b/fuzz/corpus/fuzz_libinjection/269
@@ -0,0 +1 @@
+SELECT 1 -
diff --git a/fuzz/corpus/fuzz_libinjection/27 b/fuzz/corpus/fuzz_libinjection/27
@@ -0,0 +1 @@
+--EXPECTED--
diff --git a/fuzz/corpus/fuzz_libinjection/270 b/fuzz/corpus/fuzz_libinjection/270
@@ -0,0 +1 @@
+SELECT 1 /*! 2 */;
diff --git a/fuzz/corpus/fuzz_libinjection/271 b/fuzz/corpus/fuzz_libinjection/271
@@ -0,0 +1 @@
+SELECT 1 /*! ,2 */;
diff --git a/fuzz/corpus/fuzz_libinjection/272 b/fuzz/corpus/fuzz_libinjection/272
@@ -0,0 +1 @@
+SELECT 1 /*!00,2