Re: Another Sql Injection
From: Cactus Corp. (nXewsXalaXksaX_at_nXxtg.XnetX)
Date: 08/09/05
- Next message: Dominick Baier [DevelopMentor]: "Re: Windows authentication from ASP.NET to SQL Server"
- Previous message: Nils Magnus Englund: "Windows authentication from ASP.NET to SQL Server"
- In reply to: Joe Kaplan \(MVP - ADSI\): "Re: Another Sql Injection"
- Next in thread: JR: "Re: Another Sql Injection"
- Reply: JR: "Re: Another Sql Injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 9 Aug 2005 13:57:58 +0200
I am asking myself how using a 'HAVING' clause could make
your request work. Are you using GROUP BY requests when
someone tries to register ?
Second question, what is your regular expression ? Did you
add the beginning and end of string signs ?
^.....$
antonio
- Next message: Dominick Baier [DevelopMentor]: "Re: Windows authentication from ASP.NET to SQL Server"
- Previous message: Nils Magnus Englund: "Windows authentication from ASP.NET to SQL Server"
- In reply to: Joe Kaplan \(MVP - ADSI\): "Re: Another Sql Injection"
- Next in thread: JR: "Re: Another Sql Injection"
- Reply: JR: "Re: Another Sql Injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
