967

Life Hack(lemm.ee)

posted
by
Avatar
SagXD@lemm.ee
in
Avatar
programmer_humor@programming.dev
128 comments
hidereport
Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments View context
Avatar
Kerb@discuss.tchncs.de
37 points
*

its an sql injection attack.
its rather unlikely that it works in a modern app.

assuming this would work,
it injects a command in the sql database.

it is assumed that the app runs a sql querry with the input field as a parameter e.g.
INSERT INTO "bills" (item, ammount, tip) VALUES ("steak", "20,00 $", "content of the custom tip goes here");

the semicolon indicates the end of the querry,
so the the text would cause the app to run an unfinished querry, and then start a new querry that messes up the content of the bills table.

permalink
report
parent
reply
Avatar
some_guy@lemmy.sdf.org
14 points

Further: xkcd.com/327

permalink
report
parent
reply
Avatar
RavenFellBlade@startrek.website
4 points

Is that Bobby?

permalink
report
parent
reply

Programmer Humor

!programmer_humor@programming.dev

Create post

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

  • Keep content in english
  • No advertisements
  • Posts must be related to programming or programmer topics

Community stats

  • 7.2K

    Monthly active users

  • 954

    Posts

  • 36K

    Comments

Community moderators