[英]Is Datastax Java Driver vulnerable to injection attack?
Is DataStax Java Driver vulnerable to CQL injection attack if plain text CQL is used? 如果使用纯文本CQL,DataStax Java Driver是否容易受到CQL注入攻击? Would using QueryBuilder help? 会使用QueryBuilder帮助吗?
Security be available everywhere now via prepared statements: https://issues.apache.org/jira/browse/CASSANDRA-2475 现在,通过准备好的声明可以随处获得安全性: https : //issues.apache.org/jira/browse/CASSANDRA-2475
See also 也可以看看
NoSQL Injection? NoSQL注入? (PHP->phpcassa->Cassandra) (PHP的> phpcassa->卡桑德拉)
And http://mail-archives.apache.org/mod_mbox/cassandra-user/201107.mbox/%3C1309630640.4e0f60b01d222@itchen.qinetiq.com%3E http://osgeo-org.1560.x6.nabble.com/CQL-injection-is-it-even-possible-td4976463.html http://mail-archives.apache.org/mod_mbox/cassandra-user/201107.mbox/%3C1309630640.4e0f60b01d222@itchen.qinetiq.com%3E http://osgeo-org.1560.x6.nabble.com /CQL-injection-is-it-even-possible-td4976463.html
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.