pierre Posted October 18, 2016 Share Posted October 18, 2016 Hello, I would like to know the impact of the injection : string' /* For example in such a query : "select username,pass from users where username='$uname' and password='$passwrd' limit 0,1" "select username,pass from users where username='admin' /*' and password='$passwrd' limit 0,1" So we only look for the user admin, then we extent que quey by adding ' and finaly /* will bypass the end of the query ? Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.