|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Bob Lee (crazybob_at_crazybob.org)
Date: Wed Aug 07 2002 - 14:21:32 CDT
What kind of SQL injections do I need to look out for when using JDBC?
I've tried a couple of exploits that I thought might work, but they bombed.
For example, I tried modifying a value so that a ';' and another statement
would get tacked on to the end, but I get an SQLException when there is more
than one statement (using both executeQuery() and executeUpdate()). I tried
this using Oracle.
Thanks,
Bob
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]