<a href="http://xkcd.com/327/">SQL injection fun</a> <br><br>-monte<div><br><br><div class="gmail_quote">On Mon, May 14, 2012 at 7:39 PM, Randal L. Schwartz <span dir="ltr"><<a href="mailto:merlyn@stonehenge.com" target="_blank">merlyn@stonehenge.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">>>>>> "Joel" == Joel Fentin <<a href="mailto:joel@fentin.com">joel@fentin.com</a>> writes:<br>

<br>
Joel>   my $ref=$dbh->selectall_arrayref("$Select $From $Where $Order<br>
Joel>   $Limit");<br>
<br>
This just reeks of SQL injection.<br>
<span class="HOEnZb"><font color="#888888"><br>
--<br>
Randal L. Schwartz - Stonehenge Consulting Services, Inc. - <a href="tel:%2B1%20503%20777%200095" value="+15037770095">+1 503 777 0095</a><br>
<<a href="mailto:merlyn@stonehenge.com">merlyn@stonehenge.com</a>> <URL:<a href="http://www.stonehenge.com/merlyn/" target="_blank">http://www.stonehenge.com/merlyn/</a>><br>
Smalltalk/Perl/Unix consulting, Technical writing, Comedy, etc. etc.<br>
See <a href="http://methodsandmessages.posterous.com/" target="_blank">http://methodsandmessages.posterous.com/</a> for Smalltalk discussion<br>
</font></span><div class="HOEnZb"><div class="h5">_______________________________________________<br>
San-Diego-pm mailing list<br>
<a href="mailto:San-Diego-pm@pm.org">San-Diego-pm@pm.org</a><br>
<a href="http://mail.pm.org/mailman/listinfo/san-diego-pm" target="_blank">http://mail.pm.org/mailman/listinfo/san-diego-pm</a><br>
</div></div></blockquote></div><br></div>