WebApp Sec mailing list archives
SQL/Script Injection w/ MySQL & PHP
From: "Paul" <paul () mnwebhost net>
Date: Wed, 26 May 2004 18:10:47 -0500
Hello. I'm looking for a current in-depth papers on script injection and SQL injection specifically on a MySQL/PHP combo (version 4.x of each). I'm looking for advanced techniques that would get around the normal addslashes/stripslashes for SQL injection and converting special chars to html entities for script injection. I've already read the popular BlinkSQLInjection pdf. Any other good resources would be appreciated. Thanks! Paul
Current thread:
- SQL/Script Injection w/ MySQL & PHP Paul (May 27)
- Re: SQL/Script Injection w/ MySQL & PHP Steve Slater (May 31)