Another Sql Injection
From: JR (jrudy_at_thesimpletouch.com)
Date: 08/09/05
- Previous message: Dominick Baier [DevelopMentor]: "Re: SQL Injection"
- Next in thread: Joe Kaplan \(MVP - ADSI\): "Re: Another Sql Injection"
- Reply: Joe Kaplan \(MVP - ADSI\): "Re: Another Sql Injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 8 Aug 2005 20:54:56 -0700
Hi guyz,
I have a form which is to record the user id, password and email.
I filter the email using requiredfield validator and regularexpression
validator.
Everything works great till I found somebody can put this data in the
database, like this :
having 1=1--
for the email field.
Can anybody tell me how is the way can I put it there, because whever I
tried it, I could not find it.
Thanks
JR
- Previous message: Dominick Baier [DevelopMentor]: "Re: SQL Injection"
- Next in thread: Joe Kaplan \(MVP - ADSI\): "Re: Another Sql Injection"
- Reply: Joe Kaplan \(MVP - ADSI\): "Re: Another Sql Injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
