« Debugging JSP pages | Main | When saving files Dreamweaver always shows the Save As Template prompt »
September 28, 2006
Protecting ASP JavaScript server behaviors from SQL injection vulnerability
(TechNote) Some databases let you send multiple SQL statements in a single query. Because of this, there are potential security risks when you pass parameters in a query string to a dynamically generated database query. Hackers might try to modify URL or form variables in a dynamic query by appending malicious SQL statements to existing parameters. This is often referred to as a SQL injection attack. Some of the server behavior code created by Dreamweaver should be modified to reduce the risk of SQL injection attacks. For more background information on SQL injection, see this Wikipedia article.
Posted by jeberwein at September 28, 2006 1:22 PM
Related Entries
- Cannot take Adobe Captivate Quiz that is embedded in PPT published to Connect Server
- "By Slides" report for published Adobe Captivate content does not report first slide
- Relevant Slide link does not take you directly to the Adobe Captivate content slide
- Connect user account deleted when removing the user from a group
- Breeze Online help documentation does not include information on how to add existing users to groups through CSV import