there is a param representing userName; I need to get some sorted records,if column "starred_by" contains 'userPrefix',it should be at the front,other ...
there is a param representing userName; I need to get some sorted records,if column "starred_by" contains 'userPrefix',it should be at the front,other ...
I am developing an application which mimics in someways as notebook. The users login in to the web application, connect to the data-source(database/cs ...
Beginner here! I just started working with SQL Server in Azure functions (in Typescript). I am trying to update a row in the database using declared v ...
I have a situation where I have to take input from a user, create a SQL command and send that command to a service that will execute the SQL. The serv ...
I tried to find a method for using sqlalchemy's engine.execute level solutions for sql injections, but I came across this is possible via ORM style. ...
This is really not sanitized: How to sanitize it? Here is my full class which i have tried, but WordPress team still said its not properly sanitized ...
So I'm left a little confused why on WordPress there is a method like esc_like(): https://developer.wordpress.org/reference/classes/wpdb/esc_like/ The ...
I'm trying to insert a record into a table called email. I do not have all the values on hand when performing the INSERT. I'd like to retrieve some of ...
Currently moving a web application over to using Knex to help with issues to do with SQL injection. Knex has helped us to stop the issue of running d ...
I have a head-scratcher here. Over a year ago, I wrote a website feature/form where I could submit SQL Code that is not executed but stored in a table ...
I use the following function for the connection with the Snowflake. For SQL injection prevention I use paramstyle = "numeric". So, when I use retur ...
We have an exercise and are struggling to come up with a sql injection to find more data from the database in mySQL. Here is how far we have got: myS ...
I have a query whose exact value depends on several input parameters. It looks a bit like this: SonarQube reports that this is vulnerable to SQL in ...
Trying to exploit SQL injection for my assignment. Is it possible to execute delete or drop query after order by in select query without using the sem ...
I have an old custom php website that I've been working on. I have updated the php code and have a password reset functionality in place. I moved the ...
I know most people say to just use prepared statements, but I have a site with many existent queries and I need to sanitize the variables by the mysql ...
I have a sql query I'm executing that I'm passing variables into. In the current context I'm passing the parameter values in as f strings, but this qu ...
When connecting to the database, would it be possible for someone to try a mysql injection through the form values for username and password? Simplif ...
Given a table, and then another 'meta data' table that contains the translations. The function looks up the translation and then builds an alias state ...
I have received a pentest report several years ago reporting one of the modules we have was vulnerable to SQL Injection. I am trying to verify this wi ...