Quote:
Originally Posted by KlenTelaris
Hmm tried to do sql inject with
PHP Code:
'; 'CREATE TABLE hax
(
hack1 varchar(15),
hack2 varchar(15),
)'
and with other combinations of ' and ;
and it doesn't work no matter what.
Only what i noticed is how this causing query not to execute. |
Wait wait wait... Are you saying you don't think SQL injections are possible with uncleaned GET/POST values?