Recovering from SQL inject hack

jmhooten · Jun 27, 2008

Would love to see the code you used for filtering, I setup code that checks all querys for SELECT, INSERT, DECLARE, DELETE etc and redirects the user to their own malicious code

but they somehow still got through.

Stephen · Jun 27, 2008

jmhooten said:
Would love to see the code you used for filtering, I setup code that checks all querys for SELECT, INSERT, DECLARE, DELETE etc and redirects the user to their own malicious code but they somehow still got through.

there is no need to guess how, look at the logs

eric06 · Jun 27, 2008

I got an email from Web Site Mag today about SQL Injections. Includes a free scanner.

Here is the link: http://www.websitemagazine.com/cont...6/25/SQL_Injection_Detection_and_Defense.aspx

Recovering from SQL inject hack

jmhooten

Guppy

Stephen

US Operations

eric06

Perch