|
|
|
|
|
|
by benmmurphy
5124 days ago
|
|
|
the places where these sql injections were happening wouldn't be prevented from traditional sql bindings which are applied to parts of the where clause or set values. in JDBC land i don't think you can do "SHOW TABLES FROM ? WHERE ...." |
|
|