DEV Community

EmeraldZephyr
EmeraldZephyr

Posted on

SQL Injection??

So I was working on a PowerPoint to teach some techs how to identify immunohistochemical stains and mistyped a " ' " in our vendor's search box...

Lo and behold, an error message from MYSQL server popped up. It returned a syntax error and recommended changes.

I could be wrong, but I'm pretty sure this means that the search bar was interfacing directly with their server.

I've emailed their IT support in hopes that they'll look into it. It's funny how something from an IT security class I took months ago just popped up in my head like that.

Top comments (1)

Collapse
 
grumpytechdude profile image
Alex Sinclair

Oh that's excellent. I mean, awful, but excellent.