Preventing SQL Injection (links only) - InterN0T

5th August 2009, 12:56

MaXe

Studying shellcode..

Join Date: Jun 2008

Location: Sweden - Ljusdal

Posts: 3,424

Blog Entries: 36

Rep Power: 10

Reputation: 200
MaXe has made his way up the system

Preventing SQL Injection (links only)

Hi there,

I had a conversation with some anonymous guy today about prepared state-
ments and something about that it's possible to bypass logins with %a% if
a prepared statement is used with WHERE and LIKE. No idea who would use
that anyway though xD

External Links:
http://se2.php.net/pdo.prepared-statements
http://mattbango.com/notebook/web-de...hp-and-mysqli/
http://dev.mysql.com/tech-resources/...tatements.html
http://se2.php.net/manual/en/pdostatement.execute.php

Have fun, it's what I found the most useful :-)

~ MaXe

__________________

Quote:

Originally Posted by Norph

MaXe, I really doubt that you are able to browse ANY site more than 2 minutes before you start pwning it xD

Bookmarks

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are Off Pingbacks are Off Refbacks are On Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
MUSIC~ Everywhich way \| Youtube links	System	The Offtopic Section	2	12th February 2010 17:21
[Hint] Routers emulators/simulators links here	Except1onX	Security Tutorials and Guides	5	27th January 2010 20:00
SQL Injection - From Bug to Shell	MaXe	Web Hacking & War Games	7	19th October 2009 23:44
Learning Phyton - usefull links	guigomaster	Perl // Python	3	16th October 2009 14:42
Preventing ARP and DHCP Spoofing on Cisco Switches	MaXe	Security Tutorials and Guides	0	10th January 2009 12:32