[San-Diego-pm] Perl Problem
Montgomery Newcom
montgomery.newcom at gmail.com
Wed May 16 16:51:31 PDT 2012
SQL injection fun <http://xkcd.com/327/>
-monte
On Mon, May 14, 2012 at 7:39 PM, Randal L. Schwartz
<merlyn at stonehenge.com>wrote:
> >>>>> "Joel" == Joel Fentin <joel at fentin.com> writes:
>
> Joel> my $ref=$dbh->selectall_arrayref("$Select $From $Where $Order
> Joel> $Limit");
>
> This just reeks of SQL injection.
>
> --
> Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777
> 0095
> <merlyn at stonehenge.com> <URL:http://www.stonehenge.com/merlyn/>
> Smalltalk/Perl/Unix consulting, Technical writing, Comedy, etc. etc.
> See http://methodsandmessages.posterous.com/ for Smalltalk discussion
> _______________________________________________
> San-Diego-pm mailing list
> San-Diego-pm at pm.org
> http://mail.pm.org/mailman/listinfo/san-diego-pm
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.pm.org/pipermail/san-diego-pm/attachments/20120516/f1f90e9d/attachment.html>
More information about the San-Diego-pm
mailing list