Re: can i include query in URL?

From: Tony Morris (dibblego_at_optusnet.com.au)
Date: 07/13/04 

Date: Tue, 13 Jul 2004 14:27:48 +1000

You are compromising the security of the entire application.
Look up "SQL Injection". 

-- 
Tony Morris
http://www.xdweb.net/~dibblego/

Relevant Pages

  • Re: can i include query in URL?
    ... You are compromising the security of the entire application. ... Look up "SQL Injection". ... Tony Morris ...
    (comp.lang.java.programmer)
  • [Full-Disclosure] Serious Possible SQL Injection in munchahouse.com Ecommerce site
    ... Possible SQL Injection in munchahouse.com ... 2003-2004 by YSGNet* 01 Security ... Some vulnerabilities have been discovered in munchahouse ... Successful exploitation may disclose sensitive information, ...
    (Full-Disclosure)
  • [Full-Disclosure] Serious SQL Injection in munchahouse.com : a shopping site.,
    ... Serious SQL Injection in munchahouse.com ... 2003-2004 by YSGNet* 01 Security ... Some vulnerabilities have been discovered in munchahouse ... Successful exploitation may disclose sensitive information, ...
    (Full-Disclosure)
  • RE: Checkpoint SmartDefense
    ... Another option that can be used instead of the default SQL injection ... protection is the "worm catcher" - you can write pretty good regular ... As my expertise is web applications security, I can comment only on the ... attacks such as SQL injection or XSS, ...
    (Focus-IDS)
  • RE: SQL Injection Legalities
    ... but my interpretation of this law is that the "crime" ... > enter search terms at your discretion. ... > a security mechanism in this case. ... > system as a result of the SQL injection. ...
    (Pen-Test)