Sign In
Create Account
Follow Us on Twitter
Subscribe on Youtube
2
Hi guys! I'm working on a new project.I have a simply question,as I'm a beginner.
I have serval fields,wich have to be filled out at the registration.At the password field spaces are allowed.Is it possible to get a code injected trought the password box?
Any reply will be extremely helpfull!!!
Thanks in advance!!!
4 replies to this topic
Back to top|
|
|
#2
Posted 04 November 2011 - 08:44 AM
Vaielab
-
- Members
-
- 547 posts
Programming God
oh yes!
It is possible to have sql injection with any input from the user (text, textarea, password or even checkbox!)
It is possible to have sql injection with any input from the user (text, textarea, password or even checkbox!)
#3
Posted 04 November 2011 - 08:48 AM
alex1
-
- Members
-
- 93 posts
Learning Programmer
Thanks for the reply Vaielab!!! :w00t:
#4
Posted 04 November 2011 - 08:52 AM
Vaielab
-
- Members
-
- 547 posts
Programming God
You should take a look at this tutorial
It may help you protect against sql injection (and other type or injection)
http://forum.codecal...p-security.html
It may help you protect against sql injection (and other type or injection)
http://forum.codecal...p-security.html
#5
Posted 04 November 2011 - 05:28 PM
WingedPanther
-
- Moderators
-
- 16,831 posts
A spammer's worst nightmare
- Location:Upstate, South Carolina
- Programming Language:C, C++, PL/SQL, Delphi/Object Pascal, Pascal, Transact-SQL, Others
- Learning:Java, C#, PHP, JavaScript, Lisp, Fortran, Haskell, Others
Something important to understand: Any forum data can be populated with ANY data when it hits your server. Try the Hackbar addon for FireFox if you want to get an idea of what a malicious person can send to your poor server.
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
