Thanks Grigore I have a better understanding of it now. Kind regards
Andrew Stirling 01250 874580 [email protected] http://www.calcpay.co.uk HMRC Accredited UK payroll program On 15/02/2012 01:45, Grigore Dolghin wrote: > I am sorry, you have no idea what you're talking about. I don't know how > you're doing your tests, but in last 10 minutes I have created an example > which can be downloaded from here: > > www.class-software.eu/sqlparameters.zip > > Username: admin > Password: adminpass > > The program will show how many records have been selected (1, the admin > user) > > Then enter this: > > Username: admin'&& > Password: any random password > > The app will select the same record. > > Then comment top lines and uncomment the below ones, try the trick again > and tell me if the user was logged in. > _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/[email protected] ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
