Penetration Testing mailing list archives

Re: sql injection: mysql/php4

From: Pete Finnigan <pete () peterfinnigan demon co uk>
Date: Tue, 21 Aug 2001 10:28:34 +0100

Hi

 Have a look at the documents done by rain forest puppy at

http://www.wiretrip.net/rfp/p/doc.asp?id=42&iface=6 
http://www.wiretrip.net/rfp/p/doc.asp?id=7&iface=2 
http://www.wiretrip.net/rfp/p/doc.asp?id=60&iface=6 

These are excellent articles

cheers

Pete Finnigan
www.pentest-limited.com

In article <5.1.0.14.0.20010819221351.036396c0@207.98.230.22>, Mike Shaw
<mshaw () wwisp com> writes

I'm fairly familiar with SQL injection through web forms in an 
ASP/SQL6.5/SQL7 environment, but haven't really worked with php4/mysql.

Does anyone know of any good docs on this?

Thanks
-Mike


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/




-- 
Pete Finnigan
IT Security Consultant
PenTest Limited

Office  01565 830 990
Fax     01565 830 889
Mobile  07974 087 885

pete.finnigan () pentest-limited com

www.pentest-limited.com

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Current thread:

sql injection: mysql/php4 Mike Shaw (Aug 19)
- Re: sql injection: mysql/php4 Pete Finnigan (Aug 21)