about sql injection security?
-
I want to check sql injection for my sites... is there any checking tools? thanks.
-
I want to check sql injection for my sites... is there any checking tools? thanks.
A simple check is do you concatenate SQL strings anywhere on your site, or more specifically do you take variables directly from form / querystring vars and build them straight into the sql string. If yes, then you are faced with the problem. Find my .Net blog at http://hiltong.blogspot.com
-
I want to check sql injection for my sites... is there any checking tools? thanks.
Don't know about tools, but I found this site recently that had lots of SQL injection examples. It's in French, so you'll have to translate it. You should be able to understand what's going on just from the examples. http://www.phpsecure.info/v2/article/InjSql.php