Hacker News new | ask | show | jobs
by michaelmcmillan 4519 days ago
The majority of SQL injection vulnerabilities found by searching for unsanitized input at GitHub is by Portugese or Spanish users, especially in PHP. I am not trying to generalize, but it seems to me that a StackOverflow in Portugese perhaps is not such a bad idea.
2 comments
rcruzeiro 4519 days ago
Any source for this statement? I ask this because Portugal has a population of 10.5 million people while Brazil has 201 million people and both have Portuguese as the official language.
link
michaelmcmillan 4519 days ago
I am sorry, I was unclear: The code seems to be often commented in Portugese or Spanish, I do not know which specific country they are from.

My statement may seem false if you only inspect the first pages. Though I seem to remember that the majority of the exploitable repositories were in fact Portugese or Spanish.

Source: https://github.com/search?q=mysql+%24_GET&type=Code&ref=sear...

link
SaulOfTheJungle 4519 days ago
How does one search for unsanitized input on GitHub?
link