Re: Another Sql Injection
From: JR (jrudy_at_thesimpletouch.com)
Date: 08/10/05
- Next message: Nick Malik [Microsoft]: "Re: Sql Reporting Serviced - > ASP.NET ACCESS DENIED!"
- Previous message: Bruce Barker: "Re: Sql Reporting Serviced - > ASP.NET ACCESS DENIED!"
- In reply to: Cactus Corp.: "Re: Another Sql Injection"
- Next in thread: Cactus Corp.: "Re: Another Sql Injection"
- Reply: Cactus Corp.: "Re: Another Sql Injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 9 Aug 2005 21:21:00 -0700
Here are my code:
<asp:textbox id="txtEmail" runat="server" Width="200" MaxLength="30"/>
<asp:RequiredFieldValidator id="valRequired2" runat="server"
ControlToValidate="txtEmail"
ErrorMessage="Required field"
Display="dynamic" />
<asp:RegularExpressionValidator id="valEmail" runat="server"
ControlToValidate="txtEmail"
ValidationExpression=".*@.*\..*"
ErrorMessage="Error !"
display="dynamic"/>
thanks bud
> > Actually I dont really care about the "having .." words can make
something
> > wrong there.
> > But the point is, I just wonder how can they still put that words in my
> > database.
>
> Okay, I just missunderstood it ; ) HAVING was really entered into the
> user table ;)
>
> Well... same question : show us your regular expression. Either it's
wrong,
> either you missed some logic into your validation process. The first one's
> faster to examine.
>
>
> antonio
>
>
- Next message: Nick Malik [Microsoft]: "Re: Sql Reporting Serviced - > ASP.NET ACCESS DENIED!"
- Previous message: Bruce Barker: "Re: Sql Reporting Serviced - > ASP.NET ACCESS DENIED!"
- In reply to: Cactus Corp.: "Re: Another Sql Injection"
- Next in thread: Cactus Corp.: "Re: Another Sql Injection"
- Reply: Cactus Corp.: "Re: Another Sql Injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
