ChildOfCode


Code, Maker, Robotic, Open Source. Knowledge Bases


Tag: Azure Database


  1. PHP SQL LIKE operator wildcard cause SQL injection

    PHP SQL LIKE operator with percent sign wildcard cause SQL injection vulnerability. One of my team member build a backend system and discovery the backend system can explore all the data by wildcard. So let analysis and investigate why change UserID to percent sign can cause SQL injection and explore…

    Security, SQL injection, SQL, PHP, Transact-SQL, wildcard, Azure Database, Azure App Service, PHP 5.6.40