I found a way of inserting an SQL injection through a non-secure query. The program is a checkpoint control that works with QR codes. It checks if your code exists in a database and if it does you are welcome to enter the facility.
Now... as that is the only input from non-staff people, measures against SQL injections are not being taken in the code. Now if I take an "infected" QR code to input to the system I am sure it will make them believe the threat... how would you exploit this? (SQLite)
"SELECT count(*) FROM validation WHERE qrstring='" + qrcodestring + "'"
I found a couple but nothing major like getting valid codes from other users or something like that...
Also, is my fear logical, or is this safe? Because, I was made fun at for exposing this.