Loading...

HOME All Categories SQL Inject...

SQL Injection

Temperature: 0 °C

ChungChung
author_tools 

SELECT * FROM users WHERE user='aidan' AND password='' OR ''=''

用 mysql_real_escape_string 去過濾SQL Injection

不用密碼就可以登入了 , 非常簡單的攻擊方式但卻又不得不重視 , 其實這種文字填空遊戲就是

SQL Injection

https://innstory.com/story-SQL_Injection-141
寫程式筆記

Prev
 JavaScript_檢查_Radio_Button

Next
IE10_在_fckeditor無正常顯示及無法輸入任何字元 

About the Author

Chung

我是chung
網路工作者
主業是網站系統開發建置
副業是做夢,寫故事
作品請參考/teme.biz
做夢請參考/innstory.com
聯絡/chung.teme@gmail.com

#有人用筆寫日記,有人用歲月寫日記,有人用照片寫日記,而我,用innstory寫日記。

Visitor message

Leave some footprints to prove that you visited me

Recommended reading

Author's other related stories

整合Facebook粉絲專頁的即時訊息,Zotabox網站打造免費線上支援平台。

整合Facebook粉絲專頁...

還記得在msn的年代,msn有提供在網站上架構即時通訊功能,方便網站管理者與user直接交談~ 現在...

吉他手

吉他手

回屏東,跟外甥女借了吉他回台北,想說,兒子二胡學習的還不錯,會不會是有部份也是遺傳了我未開發音樂基因...

PHP數字1000分位逗號分隔函數number_format()

PHP數字1000分位逗號分...

有時候我們必需將數字加上每三個位數加上一個逗號(千分位),例如變成,,我雖不常用...但偶爾要用到時...

Please select an option

error

Hi, thank you for your participation, but you cannot vote repeatedly~

Join innstory now and start recording your story.

"Innstory" is a place to store stories. We are committed to becoming a warm platform. Deepening the bonds between people is our direction.
We are convinced that the blockchain between people is not just a cold calculation. Join us now.

Wrong format