Loading...

SQL Injection

Temperature: 0 °C

ChungChung
author_tools

SELECT * FROM users WHERE user='aidan' AND password='' OR ''=''

用 mysql_real_escape_string 去過濾SQL Injection

不用密碼就可以登入了 , 非常簡單的攻擊方式但卻又不得不重視 , 其實這種文字填空遊戲就是

SQL Injection

https://innstory.com/story-SQL_Injection-141
寫程式筆記

Prev
 JavaScript_檢查_Radio_Button

Next
IE10_在_fckeditor無正常顯示及無法輸入任何字元 

About the Author

Chung

我是chung
網路工作者
主業是網站系統開發建置
副業是做夢,寫故事
作品請參考/teme.biz
做夢請參考/innstory.com
聯絡/chung.teme@gmail.com

#有人用筆寫日記,有人用歲月寫日記,有人用照片寫日記,而我,用innstory寫日記。

Visitor message

Leave some footprints to prove that you visited me

Recommended reading

Author's other related stories

PHP的日期時間相減方法之二

PHP的日期時間相減方法之二...

這幾天很忙...忙著寫客戶的系統.. 忙到沒時間亂開其他網站... 忙到沒時間去研究新東西... 忙...

CSS Radio Button

CSS Radio Butt...

寫系統的時候三不五時總會用到Radio Button 和 Checkboxes 目前就在寫這個部份@...

Google map 功能導入

Google map 功能導...

blogmap 寫故事還是得有地圖才好厚! 前幾天,sam同我說有一個客戶有Google map的需...

Please select an option

error

Hi, thank you for your participation, but you cannot vote repeatedly~

Join innstory now and start recording your story.

"Innstory" is a place to store stories. We are committed to becoming a warm platform. Deepening the bonds between people is our direction.
We are convinced that the blockchain between people is not just a cold calculation. Join us now.

Wrong format