Plateforme Level Extreme
Abonnement
Profil corporatif
Produits & Services
Support
Légal
English
Preventing Injection attacks
Message
De
22/08/2008 17:41:04
Craig Berntson
Quicken Loans
Salt Lake City, Utah, États-Unis
 
 
À
22/08/2008 15:38:58
Naomi Nosonovsky
Wisconsin, États-Unis
Information générale
Forum:
Microsoft SQL Server
Catégorie:
Autre
Titre:
Re: Preventing Injection attacks
Versions des environnements
SQL Server:
SQL Server 2005
Divers
Thread ID:
01341172
Message ID:
01341260
Vues:
14
So, you limit the data they can put into that field. I also didn't say an SP was your only defense, only the first line of defense.

>If a user typed < script > in the field using stored procedures would not help.
>
Craig Berntson
MCSD, Microsoft .Net MVP, Grape City Community Influencer
Précédent
Répondre
Fil
Voir

Click here to load this message in the networking platform