Alpha Video Training
Results 1 to 3 of 3

Thread: SQL injection attack and sql_lookup()

  1. #1
    Member
    Real Name
    Garry M Flanigan
    Join Date
    Jul 2004
    Location
    Melbourne, Australia
    Posts
    909

    Default SQL injection attack and sql_lookup()

    Is there any way sql_lookup can be used for an SQL injection attack?
    We have the possibility to use args in the filter but this is extra work that can be avoided if not necessary.

  2. #2
    Member tekri's Avatar
    Real Name
    Alexander Krišš
    Join Date
    Oct 2010
    Location
    Bratislava, Slovakia
    Posts
    145

    Default Re: SQL injection attack and sql_lookup()

    I think, using args is best way

  3. #3
    Alpha Software Employee Selwyn Rabins's Avatar
    Real Name
    Selwyn Rabins
    Join Date
    Mar 2000
    Location
    Boston, MA
    Posts
    5,306

    Default Re: SQL injection attack and sql_lookup()

    sql_lookup() allows you to define the filter using arguments. if you do this, then there is no possibility of a sql injection attack.

Similar Threads

  1. SQL_lookup(), lower boundary
    By gaby_h in forum Application Server Version 10 - Web/Browser Applications
    Replies: 0
    Last Post: 11-17-2011, 02:09 PM
  2. sql_lookup()
    By Mwhite in forum Application Server Version 10 - Web/Browser Applications
    Replies: 10
    Last Post: 06-20-2011, 03:17 AM
  3. sql_lookup issues
    By Rogers in forum Application Server Version 10 - Web/Browser Applications
    Replies: 10
    Last Post: 09-24-2010, 12:21 PM
  4. SQL_Lookup
    By RodM in forum Application Server Version 10 - Web/Browser Applications
    Replies: 4
    Last Post: 03-29-2010, 12:01 PM
  5. v10 Download site being reported as attack site
    By Peter.Greulich in forum Announcements
    Replies: 1
    Last Post: 12-15-2009, 02:28 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •