why most sql injection is not occurred at mysql?


Hello, all.


A I know, sql injection itself has not relation with DataBase.

Surely I have seen sql injection is occurred at mysql.
but in my short experience, most sql injection is occurred at ms-sql or oracle based not mysql.

I don't know why.

Any idea?


Thanks for your help in advance.



_________________________________________________________________
나의 글로벌 인맥, Windows Live Space!
http://www.spaces.live.com

Relevant Pages

  • Re: why most sql injection is not occurred at mysql?
    ... As for MySQL, since there were no stored proc before version 5.0 it ... database interaction in books and websites use ... so by design there was blind sql injection. ...
    (Security-Basics)
  • glFusion <= 1.1.2 COM_applyFilter()/order sql injection exploit
    ... software site: http://www.glfusion.org/ ... Vulnerability, sql injection in 'order' and 'direction' arguments: ... To successfully interrogate MySQL you need at least 2 records in the ...
    (Bugtraq)
  • Re: Safe insert queries for mysql ?
    ... and you've got a potential SQL injection attack opened up. ... placeholders - or using the database's native support if it has it (older MySQL ... The library does whatever is required to get the values into the database - ... consistently and without you having to worry about quotes, escaping and so on. ...
    (comp.lang.php)
  • Re: escaping vs stored procedure
    ... it's really (PHP's MySQL library)'s function? ... It is a library function in MySQL. ... ng that mysql_escape_string prevents sql injection. ... mysql_real_escape_stringstrings, ...
    (comp.lang.php)
  • Writing a phpshell via SQL Injection to a host
    ... I've really been hitting SQL Injection pretty hard lately. ... comfy with SQL Injection on MSSQL server now, ... with with it on MySQL. ... The best reference on this type of attack that I've found so far is: ...
    (Pen-Test)