SQL Injection exploiting number

I just read this article by David Litchfield. The article is actually from 2008, but really show how dangerous the “create public synonym” can be, for instance with a dynamic number concatination in a SQL.

Post a Comment

Your email is never published nor shared. Required fields are marked *