968

Life Hack(lemm.ee)

posted
by
Avatar
SagXD@lemm.ee
in
Avatar
programmer_humor@programming.dev
128 comments
hidereport
Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments View context
Avatar
r00ty@kbin.life
10 points

Well no. If the programmer uses prepared statements, they are protected. If they use a prepared statement but actually just put their own unsanitized statement in there and execute it, it’s not protected.

Now, I’d like to say it is 2024 and everyone should be using AT LEAST prepared statements for security. I’ve seen people doing some scary things in my time, and that includes quite recently.

permalink
report
parent
reply
Avatar
dan@upvote.au
1 point

Bad developers will do bad things, but most DB framework documentation points people towards the right way to do things, which is why I said it’s not common any more.

permalink
report
parent
reply
Avatar
Dr. Jenkem@lemmy.blugatch.tube
6 points

Bad developers are common though. And good documentation won’t stop a bad developer from doing a bad thing.

I agree that SQLi isn’t as common as it once was, but it still very much exists.

permalink
report
parent
reply

Programmer Humor

!programmer_humor@programming.dev

Create post

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

  • Keep content in english
  • No advertisements
  • Posts must be related to programming or programmer topics

Community stats

  • 3.3K

    Monthly active users

  • 1K

    Posts

  • 37K

    Comments

Community moderators