Vulnerability Development mailing list archives
sql injection and php
From: Jacek Lach <jlach () utopia pl eu org>
Date: Tue, 28 May 2002 23:56:22 +0000
Hi, I hope the list is right :-) Does the magic_quotes in php's configuration resolves the problem of sql injection? Is this technique still a risk when the option is enabled? Most documentation I found was presenting ASP examples, but simple entering ' character doesn't work when this option is enabled (which is set in default configuration). Thanks for any answers and/or references on the subject. Regards, Jacek Lach
Current thread:
- sql injection and php Jacek Lach (May 28)
- Re: sql injection and php Sverre H. Huseby (May 29)
- Re: sql injection and php Greg Hunt (May 29)
- Re: sql injection and php Sverre H. Huseby (May 29)
- Re: sql injection and php Greg Hunt (May 29)
- Re: sql injection and php Florian Weimer (May 29)
- Re: sql injection and php Sverre H. Huseby (May 29)
- Re: sql injection and php Jacek Lach (May 29)
- Re: sql injection and php Sverre H. Huseby (May 29)
- Re: sql injection and php Lincoln Yeoh (May 29)
- Re: sql injection and php Sverre H. Huseby (May 29)