Hi, list! There is a some code joke was found =)
$ cat core/data/db/persist.py | grep -A3 -B3 "SQL injection"
# Get the row(s)
c = self._db.cursor()
select_stm = "select * from data_table"
# This is a SQL injection! =)
select_stm += " where " + search_string
# Add the result limit, remember that a result_limit of -1 is "no limit"
--
Taras P. Ivashchenko <[email protected]>
pgp46ESRpTYiY.pgp
Description: PGP signature
------------------------------------------------------------------------------ The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com
_______________________________________________ W3af-develop mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/w3af-develop
