Tagged questions

22 results found

BindingSource Object and SQL InjectionAugust 17, 2011

Hi, I have a small app and busy investigating sql injection. i am currently using a bindingsource object on my form. the source for the bindingsource are prebuilt sql statements that are loaded when t

10

views

0

votes

4

answers

how to create a safe cfinsert tag using parametersAugust 17, 2011

My database has recently been hit with an slq injection. I've cleaned up the database, changed passwords, but need help figuring out how to change my cfinsert tags to use parameter, as well as my

12

views

0

votes

2

answers

sql injection vulnerabilityAugust 17, 2011

could someone tell me the do's and don't s for login, I would like to make sure that no one will be able to getin or erase my database through a txt field

7

views

0

votes

2

answers

SQL Injection AttackAugust 17, 2011

Hi, I have a log file from an Apache server (running wordpress and mySQL) which I believe has been attacked using SQL injection.  There are many log entries that look like they have had the query

22

views

0

votes

1

answers

Cleansing SQL Injection attempts in querystringAugust 17, 2011

How can I cleanse any incoming querystrings like this one: /default.asp?-='+AND+'b'> 'a&cmd=resetall Is there a way to detect invalid characters and then remove them and redirec

4

views

0

votes

13

answers

SQL Injection protectionAugust 17, 2011

I am trying to create a function that validates/checks a string (submitted from a form via php) to ensure that it is safe to plug into a mysql database.  In a nutshell a complete sql-injection pr

2

views

0

votes

4

answers

Stopping SQL Injection ASPAugust 17, 2011

hey guys and gals, I would have never thought I would be hacked, but over the last few days that has happened.  Looks like they have flooded my db with some information, hopefully not getting any

19

views

0

votes

11

answers

SQL Injection Prevention Best PracticesAugust 18, 2011

   <tr>     <td>     <asp:Label ID="lblEmailAddressConfirm " runat="server" CssClass="mainlabel">Confi rm Email</asp:La

12

views

0

votes

10

answers

CVE-2014-3868 - ZeusCart 4.x Remote SQL Injection Vulnerability June 21, 2016

http://breaking.technology/advisories/CVE-2014-3868.txt Assigned: 27 May 2014 (Submitted to Vendor May 29) Status: Vendor Ignored, see suggested fix below. Released: June 23 2014 Classification

24

views

0

votes

0

answers

Customer hacking issues June 24, 2016

I had a customer who had been hacked through his old scripts. I notified him but problem is he doesn't care and he did continue paying for email and web hosting. For web wise we have suspended him.

35

views

0

votes

8

answers