RSS FullRecent Posts
- Webinar “Bau sicherer LAMP Anwendungen”
- SQL Injection Tutorial (MySQL)
- PCI Compliance partnership
- Simple MySQL injection
- MySQL-Proxy learning to block SQL-Injection - Stefan Esser
Recent Comments
- luca on XSS in mysql_error()
- Jacob Tuscon on SQL Power Injector 1.2 released - TechRepublic
- MySQL Security » MySQL Security Update Fixes Restrictions Bypass and Library … on MySQL Security Update Fixes Restrictions Bypass and Library ...
0×000000 # The Hacker Webzine : Massive SQL Injection Attack on MS …
Published by | Filed under macha, day-macha, humour, politics, server-from-what, work, tumblr, sql, attack, technology, day, powered-by-tumblr, mysql
2) MS SQL “allows query stacking by separating the queries” which confirms the exploit. What? Is this like allowing multiple queries with a semicolon? But MySql and Postgresql do that as well, unless you use a “prepare” statment. …
blog database …
Read the original here: 0×000000 # The Hacker Webzine : Massive SQL Injection […]
April 26th, 2008. Comment now »
RailsConf Europe 2007: Day Three
Published by | Filed under day, technology, opinion, newton-gra2-com, mac, windows, news, rails, apple, blog, ruby, programming
no strip_tags (you can go around and still inject some code) - use sanitize, SafeERB plugin SQL Injection - Unauthorized reading (without using [] in finds) - Needs ‘, ” or nil + line break - Conditions hash Interpreter Injection …
programming red hat security updates slaptijack softwareprogramming, red …
See the original […]
September 20th, 2007. Comment now »
