April 02 2025 05:52:42
News Photos Forum Search Contact History Linkbox Calendar
 
Forum Threads
Newest Threads
AI discussion
Starship orbital lau...
The MAGA chronicles
Stand up comedy
Good music that peop...
It's a trap!
Covers that Rock
The Tech billionaire...
Covers that never sh...
Besti ella størsti ...
Linkbox
Newest Links
Eivør analysed by W... (0)
SNL Weekend Update: ... (0)
Deadline: Forsvarsmi... (0)
Jon Stewart on Trump... (0)
Sheriff: Gene Hackma... (2)
Ferris Bueller's day... (0)
Interstellar travel ... (0)
Laks er lort (0)
Keypmannahavn í 197... (0)
Atheist biologist ca... (0)
Random Photo
Member Poll
Should I watch "The Rings of Power"?

Yes

No

LOL

You must login to vote.
Link
 CategoryLink
Rating
funAn interesting SQL injection strategy
-4

Comments
Laluu on March 22 2010 23:04:58
Looking at the + and - columns, I'm guessing that this is hilarious, but we just don't get it. smiley
OKJones on March 22 2010 23:18:44
Or it's not hilarious and we don't get it. smiley

Or the minus is used as a blank vote smiley
Grizlas on March 23 2010 00:34:18
Well, maybe some explanation is in order; an SQL injection is basically someone trying to gain access to a SQL database via user input fields, such as this comment box I'm writing in at the moment. If user input is accepted as is and inserted in the database directly, you might allow a user to write some espace characters like \\\\\\\ wich escape the last character entered, and then eventually being able to execute some command that destroy the database, or make the hacker admin or some such undesirable thing.

In this case, the intention seems to be to hack traffic cameras smiley

(which is not to be taken seriously)
Vuzman on March 23 2010 15:21:52
A semi-colon ends an SQL statement. Now, if I enter something with a semi-colon into, say the shout box, and this is saved straight to the database (which it would be if it wasn't coded very well), then the database would stop saving the shout at the semi-colon, and presume that whatever came next was an actual SQL statement.

If that was, say 'DROP DATABASE gongumenn', and I guessed the database name correct, then the entire site would vanish in a puff of smoke.

'Tablice' is Polish for 'license plate'.
Post Comment
Please Login to Post a Comment.
Login
Username

Password



Forgotten your password?
Request a new one here.
Last Seen Users
Torellion06:00:04
Boddin07:26:50
Grizlas12:14:33
OKJones18:40:08
Vuzman22:34:58
Norlander 5 days
fjallsbak 2 weeks
Spiff12 weeks
Vester13 weeks
Laluu32 weeks
Obituaries
You must login to post a message.

Grizlas
01/01/2025 00:37
Takk, somuleiðis!

Norlander
31/12/2024 23:30
Gott nýggjár!

Grizlas
06/11/2024 20:17
Finally.

Norlander
05/11/2024 13:14
tta finally works again

Vuzman
26/08/2024 07:45
Try the google search box

Grizlas
24/08/2024 23:30
doubtful

OKJones
24/08/2024 22:08
does the search function even work?

Grizlas
24/12/2023 15:06
Gleðilig jól

Norlander
24/12/2023 10:09
Gleðilig jól!

Norlander
29/10/2023 19:16
:/