Comments on: Sql Injections and Securing Clipshare Vulnerabilities http://www.sharpdeveloper.net/content/archive/2007/07/02/fix-clipshare-the-easy-way.aspx C# articles and tutorials on SharpDeveloper.NET Sun, 05 Sep 2010 04:33:45 +0000 hourly 1 http://wordpress.org/?v=3.0 By: eddybear http://www.sharpdeveloper.net/content/archive/2007/07/02/fix-clipshare-the-easy-way.aspx/comment-page-1#comment-59 eddybear Sat, 20 Sep 2008 04:07:00 +0000 http://migrate.sharpdeveloper.net/content/?p=159#comment-59 henke37, what does your thing mean.. .can you say that in plain english :D henke37, what does your thing mean.. .can you say that in plain english :D

]]> By: prasad http://www.sharpdeveloper.net/content/archive/2007/07/02/fix-clipshare-the-easy-way.aspx/comment-page-1#comment-22 prasad Thu, 27 Dec 2007 09:41:00 +0000 http://migrate.sharpdeveloper.net/content/?p=159#comment-22 Hi, I have bug in sql injection.when i am giving user name and password as ' or 1=1-- i could able to login sucessfully.please give me the solution to fix the bug. rgds, Prasad. Hi,
I have bug in sql injection.when i am giving user name and password as
‘ or 1=1–

i could able to login sucessfully.please give me the solution to fix the bug.

rgds,
Prasad.

]]> By: Sameer Alibhai http://www.sharpdeveloper.net/content/archive/2007/07/02/fix-clipshare-the-easy-way.aspx/comment-page-1#comment-18 Sameer Alibhai Mon, 15 Oct 2007 10:46:00 +0000 http://migrate.sharpdeveloper.net/content/?p=159#comment-18 That is so true... but the point of this article was to have a quick and dirty way to protect the site, anyway it will stop most kiddy hackers. :) Sameer That is so true… but the point of this article was to have a quick and dirty way to protect the site, anyway it will stop most kiddy hackers. :) Sameer

]]> By: henke37 http://www.sharpdeveloper.net/content/archive/2007/07/02/fix-clipshare-the-easy-way.aspx/comment-page-1#comment-17 henke37 Mon, 15 Oct 2007 09:07:00 +0000 http://migrate.sharpdeveloper.net/content/?p=159#comment-17 Renaming the table/db/field is not going to hide the info, there is meta tables, that can not be renamed, that can be queried for the names. Also, I think that the best way to make immune scripts is to use the parameterized queries, those where the database engine binds the input after compiling the query. Renaming the table/db/field is not going to hide the info, there is meta tables, that can not be renamed, that can be queried for the names.

Also, I think that the best way to make immune scripts is to use the parameterized queries, those where the database engine binds the input after compiling the query.

]]> By: abelkakraba http://www.sharpdeveloper.net/content/archive/2007/07/02/fix-clipshare-the-easy-way.aspx/comment-page-1#comment-13 abelkakraba Wed, 12 Sep 2007 13:39:00 +0000 http://migrate.sharpdeveloper.net/content/?p=159#comment-13 good good

]]> By: Shweta Jain http://www.sharpdeveloper.net/content/archive/2007/07/02/fix-clipshare-the-easy-way.aspx/comment-page-1#comment-12 Shweta Jain Wed, 22 Aug 2007 03:48:00 +0000 http://migrate.sharpdeveloper.net/content/?p=159#comment-12 HOW to use LIKE keyword with % sign in SQL Query for preventing the SQL Injection? HOW to use LIKE keyword with % sign in SQL Query for preventing the SQL Injection?

]]>