| SQL injection [message #449325] |
Mon, 29 March 2010 03:54  |
 |
Littlefoot
Messages: 21823
Registered: June 2005
Location: Croatia, Europe
|
Senior Member
Account Moderator |
|
|
|
Now and then we come to "SQL injection" term (just like in this topic). Wikipedia talks about real world examples, but - did any of you, personally, ever deal with it? If so, could you say a word or two about it?
|
|
|
|
|
|
| Re: SQL injection [message #449437 is a reply to message #449334] |
Mon, 29 March 2010 09:27  |
ThomasG
Messages: 3212
Registered: April 2005
Location: Heilbronn, Germany
|
Senior Member |
|
|
Not of a malicious one. But some of the applications that I inherited had some problems in that direction.
I basically ran into failed transactions in some interfaces when stock items or customers (like "Tony's Bar" for example) had single quotes (or apostrophes) in them.
|
|
|
|
| Re: SQL injection [message #449600 is a reply to message #449437] |
Tue, 30 March 2010 14:39 |
|
Littlefoot
Messages: 21823
Registered: June 2005
Location: Croatia, Europe
|
Senior Member
Account Moderator |
|
|
Thank you, both of you.
It appears that people didn't see much of SQL injection. Or, they don't want to talk about it.
Moreover, I guess that one has to be an expert in order to be able to recognize a chance of injecting and, finally, know how to do that.
OK then; it would be nice to hear another stories, if someone is willing to share.
|
|
|
|
] 
Blog
Search
Help
Members
Register
Login
Home
