SQL Injection??

#sql #security #webdev

So I was working on a PowerPoint to teach some techs how to identify immunohistochemical stains and mistyped a " ' " in our vendor's search box...

Lo and behold, an error message from MYSQL server popped up. It returned a syntax error and recommended changes.

I could be wrong, but I'm pretty sure this means that the search bar was interfacing directly with their server.

I've emailed their IT support in hopes that they'll look into it. It's funny how something from an IT security class I took months ago just popped up in my head like that.

Top comments (1)

Alex Sinclair • Jul 1 '19

Oh that's excellent. I mean, awful, but excellent.

BCrypt::Errors::InvalidHash (invalid hash)

Alexandre Calaça - Oct 28

Building an UI library that does not look generic!

Arif Hossain - Oct 28

Creating a Multilingual Expense Tracker with Tolgee

Mayank Mohapatra - Oct 31

Upgrading from Nextra v2 to Nextra v3: A "Quick" Guide

Giovambattista Fazioli - Oct 28

DEV Community