SQL Injection Test

-
Ok here you go a quick test to see if you are vunerable to sql injection.

In your login form use Username: admin'--

This will cause the sql query to comment out everything after the username is passed.

example:

* SELECT * FROM members WHERE username = 'admin'--' AND password = 'password'

This is going to log you as admin user, because rest of the SQL query will be ignored.

Comments

Post a Comment

Popular posts from this blog

Protopage a great iGoogle Alternative

-
Well if you haven't heard iGoogle will be shut down by Google in November of 2013, so it may be time to look at some alternatives. I recently came across Protopage you can find them here http://www.protopage.com/ Protopage launched in 2005 and is still going despite nearly every other start page shutting down or becoming derelict. Due to popular demand, they have released better support for tablets and larger smartphones, so that you have the choice between viewing the mobile version or the normal version of Protopage on your device. There isn't much to dislike about Protopage. It has a very nice Web 2.0-oriented design, and it is very solid in every area that you expect from a personalized start page. The ability to view multiple RSS feeds in a single module and the integrated podcasts puts this start page right up there among the best. What’s the business model? No idea. It’s totally free and sans-ads, at least for now. No registration at all is requir...
Read more

A simple Flex Builder contact form

-
Ok here is my simple flex builder contact form. It will validate fields then post form data to a backend page for processing. This Flex Builder Form does not use the httpservice to retrieve information its just a simple post form that keeps the bots from filling out the form on a standard web site   <?xml version="1.0" encoding="utf-8"?> <mx:Application xmlns:validators="validators.*" applicationComplete="validator()" xmlns:mx="http://www.adobe.com/2006/mxml" layout="absolute" width="480" height="500" backgroundGradientColors="[#ffffff, #ffffff]"> <mx:Script>                 <![CDATA[                                 private function ...
Read more

Designing a Better Contact Page

-
Image
A good contact page is essential for maintaining relationships with your visitors. Whether we’re talking eCommerce, magazines, personal websites, online services, users will usually seek out a contact page as their first means of communication with you. Oddly enough, many web designers neglect the humble contact page, even considering it one of the least important aspects of a website. Let’s put that right. The Importance of a Good Contact Page A contact page is often overlooked. How many times have you visited a website, wanting to get in touch to complain about a product or service, or ask a question? And how often have you struggled with a contact form? A good contact page can benefit any type of business. It can improve customer satisfaction by helping users with their problems. It can also help a business improve its products and services by providing an avenue for valuable feedback. Other channels can be limited when it comes to user feedback. Television, radio, magazines, news...
Read more