Quote:
Originally Posted by potter
Wait wait wait... Are you saying you don't think SQL injections are possible with uncleaned GET/POST values?
|
No i saying how i was not able to find proper combination to execute sql injection and i am sure how there is proper combination which will do the job.I still agree how leaving unprotected GET/POST value is huge security risk and should be protected no matter what.