Documente Academic
Documente Profesional
Documente Cultură
What is SQL
Injection?
2
*What is SQL
Injection?
*What is SQL
Injection?
*injection possibilities
Injection work?
6
vulnerability today!
*It is a flaw in "web application" development,
it is not a DB or web server problem
*Vulnerable
Applications
8
*SQL Injection
Characters
prevent an attack?
prevent an attack?
*Best defence
*Consider:
*SELECT fields FROM table WHERE id = 23 OR 1=1
*No quotes here!
*Other Defenses
*Consider:
*SELECT fields FROM table WHERE id = 23 OR 1=1
*No quotes here!
*Other Defenses
*More Defenses
THANK YOU