July 11 2025 18:29:56
News Photos Forum Search Contact History Linkbox Calendar
 
Forum Threads
Newest Threads
AI discussion
new tab page
Great live performances
Good music that peop...
Starship orbital lau...
Covers that Rock
The MAGA chronicles
Stand up comedy
It's a trap!
The Tech billionaire...
Linkbox
Newest Links
Some Football stats (1)
Jimmy Carr - Who Wan... (0)
Handheld laser weldi... (0)
Skal dine billeder b... (3)
How Voyager I got fixed (0)
My dinner with Adolf (1)
Eivør analysed by W... (0)
SNL Weekend Update: ... (0)
Deadline: Forsvarsmi... (0)
Jon Stewart on Trump... (0)
Random Photo
A sinful time long since past
A sinful time long since past
Gongumenn in the rearview

Member Poll
Should I watch "The Rings of Power"?

Yes

No

LOL

You must login to vote.
Link
 CategoryLink
Rating
funAn interesting SQL injection strategy
-4

Comments
Laluu on March 22 2010 23:04:58
Looking at the + and - columns, I'm guessing that this is hilarious, but we just don't get it. smiley
OKJones on March 22 2010 23:18:44
Or it's not hilarious and we don't get it. smiley

Or the minus is used as a blank vote smiley
Grizlas on March 23 2010 00:34:18
Well, maybe some explanation is in order; an SQL injection is basically someone trying to gain access to a SQL database via user input fields, such as this comment box I'm writing in at the moment. If user input is accepted as is and inserted in the database directly, you might allow a user to write some espace characters like \\\\\\\ wich escape the last character entered, and then eventually being able to execute some command that destroy the database, or make the hacker admin or some such undesirable thing.

In this case, the intention seems to be to hack traffic cameras smiley

(which is not to be taken seriously)
Vuzman on March 23 2010 15:21:52
A semi-colon ends an SQL statement. Now, if I enter something with a semi-colon into, say the shout box, and this is saved straight to the database (which it would be if it wasn't coded very well), then the database would stop saving the shout at the semi-colon, and presume that whatever came next was an actual SQL statement.

If that was, say 'DROP DATABASE gongumenn', and I guessed the database name correct, then the entire site would vanish in a puff of smoke.

'Tablice' is Polish for 'license plate'.
Post Comment
Please Login to Post a Comment.
Login
Username

Password



Forgotten your password?
Request a new one here.
Last Seen Users
fjallsbak18:20:00
Grizlas 1 day
Boddin 1 day
Norlander 2 days
OKJones 2 days
Spiff 6 days
Torellion 1 week
Vuzman 1 week
Vester 1 week
Jogvanth 4 weeks
Obituaries
You must login to post a message.

Grizlas
04/07/2025 09:01
RIP Mr. Blonde

Grizlas
03/07/2025 14:36
Could it be they lack those things because you know they are AI generated? smiley

Vuzman
03/07/2025 11:44
They all look... off. Incongruous, lacking personality and identity... Know what I mean?

Norlander
02/07/2025 22:27
WooHoo a new news item!

Grizlas
02/07/2025 20:29
None of them huh, Vuz? smiley

Grizlas
10/05/2025 11:14
changed thread_views from smallint to int. so now some threads which were stuck at 65535 views should work again smiley

Grizlas
01/01/2025 00:37
Takk, somuleiðis!

Norlander
31/12/2024 23:30
Gott nýggjár!

Grizlas
06/11/2024 20:17
Finally.

Norlander
05/11/2024 13:14
tta finally works again