FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » Imported messages » comp.lang.php » Lilupophilupop
Show: Today's Messages :: Polls :: Message Navigator
Return to the default flat view Create a new topic Submit Reply
Lilupophilupop [message #176440] Sat, 07 January 2012 12:15 Go to previous message
M. Strobel is currently offline  M. Strobel
Messages: 386
Registered: December 2011
Karma:
Senior Member
Hi,

there is currently a strong SQL injection attack going on, I find
https://isc.sans.edu/diary.html?storyid=12127 very instructive.

A page down it says "In this instance the PAGEID=189 parameter on
page xxxxxxxx.asp is vulnerable".

Now this should not happen. If you expect an integer, use your
integer-read function!

But it happens all the time. If you use tools/4GLs/CMSses you
have to trust them, of course.

/Str
[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: Running function in the background?
Next Topic: Magic quotes? Should I still be cautious?
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Fri Nov 22 14:29:58 GMT 2024

Total time taken to generate the page: 0.03954 seconds