>- see footer for list info -< could you use the ascii value for the apostrophe: '
Duncan Cumming New Media Developer Customer Relations Management / Education Fife Council 700 4105 / 01592 414105 >>> [EMAIL PROTECTED] 26/08/2005 10:56 >>> >- see footer for list info -< Have some code with a query like this: SELECT * FROM Users Where User = '#trim(form.user)#' AND Password= '#trim(form.password)#' Now, I wanted to prove to the person who wrote it that SQL injection was possible. I am on CFMX 7 and CF is kindly escaping the ' for me. When was this upgraded? CF5 to CFMX6 or CFMX6 to CFMX7? Thanks Allan P.S. Need a decent course in hacking. lol. _______________________________________________ For details on ALL mailing lists and for joining or leaving lists, go to http://list.cfdeveloper.co.uk/mailman/listinfo -- CFDeveloper Sponsors:- >- Hosting provided by www.cfmxhosting.co.uk -< >- Forum provided by www.fusetalk.com -< >- DHTML Menus provided by www.APYCOM.com -< >- Lists hosted by www.Gradwell.com -< >- CFdeveloper is run by Russ Michaels, feel free to volunteer your help -< ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed and should not be disclosed to any other party. If you have received this email in error please notify your system manager and the sender of this message. This email message has been swept for the presence of computer viruses but no guarantee is given that this e-mail message and any attachments are free from viruses. Fife Council Tel: +44 (0) 1592 414141 ********************************************************************** _______________________________________________ For details on ALL mailing lists and for joining or leaving lists, go to http://list.cfdeveloper.co.uk/mailman/listinfo -- CFDeveloper Sponsors:- >- Hosting provided by www.cfmxhosting.co.uk -< >- Forum provided by www.fusetalk.com -< >- DHTML Menus provided by www.APYCOM.com -< >- Lists hosted by www.Gradwell.com -< >- CFdeveloper is run by Russ Michaels, feel free to volunteer your help -<
