subject:"RE\: \[FRIDAY\] Got A Security Hole\?"

RE: [FRIDAY] Got A Security Hole?

2003-06-20 Thread Hookom, Jacob

One of the most interesting security holes that MANY applications have are the use of wild cards in dynamic sql queries login: admin password: '+%+' or those likes... try it sometime Jacob Hookom Senior Programmer/Analyst McKesson Medical Surgical Golden Valley, MN -Original

Re: [FRIDAY] Got A Security Hole?

2003-06-20 Thread Jing Zhou

: [FRIDAY] Got A Security Hole? One of the most interesting security holes that MANY applications have are the use of wild cards in dynamic sql queries login: admin password: '+%+' or those likes... try it sometime Jacob Hookom Senior Programmer/Analyst McKesson Medical Surgical

Re: [FRIDAY] Got A Security Hole?

2003-06-20 Thread Joseph Fifield

This is certainly not Struts specific, but it may be useful... http://www.owasp.org/ Joe - Original Message - From: Jing Zhou [EMAIL PROTECTED] To: Struts Users Mailing List [EMAIL PROTECTED] Sent: Friday, June 20, 2003 3:59 PM Subject: Re: [FRIDAY] Got A Security Hole? Does anyone