Anonymous :anarchism: 🏴 · @YourAnonRiots
6070 followers · 37980 posts · Server mstdn.social#SQLInjection Attacks - Download a FREE preview and check the articles inside.
#infosec #cybersecurity #redteam #pentest #pentesting #hacking #hackers #coding #opensource #Linux #windows
#Windows #Linux #OpenSource #Coding #Hackers #Hacking #pentesting #pentest #redteam #CyberSecurity #InfoSec #sqlinjection
Dave Heinemann 🇦🇺 :dotnet: · @dHeinemann
236 followers · 1182 posts · Server fosstodon.org.NET developers: is there any indication that parameterized SQL queries using System.Data.SqlClient.SqlCommand do not protect against SQL injection?
A new developer on a project believes that it's necessary to detect and block parameterized queries if their parameters contain SQL keywords, otherwise the database can potentially execute them as SQL. I cannot find evidence of this, or reproduce it.
Do parameterized queries have known vulnerabilities?
#dotnet #sqlserver #sqlinjection
Mr.Trunk · @mrtrunk
6 followers · 13177 posts · Server dromedary.seedoubleyou.meSecurityOnline: jSQL Injection v0.91 releases: Java application for automatic SQL database injection https://securityonline.info/jsql-injection-java-application-automatic-sql-database-injection/ #WebAppPenTest #jSQLinjection #sqlinjection #sqli
#webapppentest #jsqlinjection #sqlinjection #sqli
Mr.Trunk · @mrtrunk
4 followers · 7314 posts · Server dromedary.seedoubleyou.me
SecurityOnline: jSQL Injection v0.90 releases: Java application for automatic SQL database injection https://securityonline.info/jsql-injection-java-application-automatic-sql-database-injection/ #WebAppPenTest #jSQLinjection #sqlinjection #sqli
#webapppentest #jsqlinjection #sqlinjection #sqli
Mr.Trunk · @mrtrunk
4 followers · 6951 posts · Server dromedary.seedoubleyou.meSecurityOnline: jSQL Injection v0.89 releases: Java application for automatic SQL database injection https://securityonline.info/jsql-injection-java-application-automatic-sql-database-injection/ #WebAppPenTest #jSQLinjection #sqlinjection #sqli
#webapppentest #jsqlinjection #sqlinjection #sqli
Mr.Trunk · @mrtrunk
5 followers · 6044 posts · Server dromedary.seedoubleyou.meSecurityOnline: jSQL Injection v0.88 releases: Java application for automatic SQL database injection https://securityonline.info/jsql-injection-java-application-automatic-sql-database-injection/ #WebAppPenTest #jSQLinjection #sqlinjection #sqli
#webapppentest #jsqlinjection #sqlinjection #sqli
Nerd-Enzyklopädie · @ne
4 followers · 12 posts · Server det.socialTeil 11 der Nerd-Enzyklopädie über eine Mutter mit
#Hacker-Fähigkeiten…
#sqlinjection #sql #mysql #schule #neuland
https://nickyreinert.medium.com/ne-11-der-kleine-bobby-tables-1a3a1d77d92d
#hacker #sqlinjection #SQL #mysql #schule #neuland
👾 Rene Rehme · @renereh1
665 followers · 147 posts · Server neos.social
It looks like an angle bracket is filtered on the backend. I need this operator for a time-based injection because there is no response output. Alternative filter evasion? #sqli #sqlinjection #payload #BugBounty #bugbountytipHelp.
#sqli #sqlinjection #payload #bugbounty #bugbountytiphelp
ApisNecros · @ApisNecros
94 followers · 1029 posts · Server ioc.exchangeBeen out of the game for a bit on account of life moving fast, but after only a couple hours I managed to find a completely transparent #SQLInjection vuln on a target. After building a strong case, it's now reported. Feels good, man 💪
#sqlinjection #cybersecurity #infosec #hacking #hacktheplanet #bugbounty
Tech news from Canada · @TechNews
790 followers · 21591 posts · Server mastodon.roitsystems.caArs Technica: MOVEit app mass-exploited last month patches new critical vulnerability https://arstechnica.com/?p=1952233 #Tech #arstechnica #IT #Technology #vulnerabilities #SQLinjection #Security #exploits #Biz&IT #moveit
#Tech #arstechnica #it #technology #vulnerabilities #sqlinjection #security #exploits #biz #moveit
IT News · @itnewsbot
3456 followers · 265882 posts · Server schleuss.onlineMOVEit app mass-exploited last month patches new critical vulnerability - Enlarge (credit: Lino Mirgeler/picture alliance via Getty Images)
... - https://arstechnica.com/?p=1952233 #vulnerabilities #sqlinjection #security #exploits #biz #moveit
#moveit #biz #exploits #security #sqlinjection #vulnerabilities
LisPi · @lispi314
538 followers · 11497 posts · Server mastodon.top@lewdthewides Wait what the fuck? https://en.wikipedia.org/wiki/2023_MOVEit_data_breach#Methodology
How in the hell do you still have #SQLInjection vulnerable frontends in this day and age in government-used systems? Has no one heard of #PreparedQueries / #PreparedStatements (yay type-safety) and #StoredProcedures? What, did they hire some intern with no supervision for writing a high-liability system?
#sqlinjection #preparedqueries #storedprocedures #sql #sqli #preparedstatements
Nightfighter · @Optimus
42 followers · 1416 posts · Server social.tchncs.deThe 'Visforms Base Package for Joomla 3' #extension is vulnerable to SQL Injection as concatenation is used to construct an SQL Query. An attacker can interact with the database and could be able to read, modify and delete data on it.
(CVE-2023-23753)
#sqlinjection #joomla #vulnerability #cve #extension
ITSEC News · @itsecbot
1317 followers · 35675 posts · Server schleuss.onlineMOVEit mayhem 3: “Disable HTTP and HTTPS traffic immediately” - Twice more unto the breach... patch being tested, in the meantime, shut down web access. https://nakedsecurity.sophos.com/2023/06/15/moveit-mayhem-3-disable-http-and-https-traffic-immediately/ #vulnerability #sqlinjection #progress #moveit
#moveit #progress #sqlinjection #vulnerability
FastRuby.io · @FastRuby
27 followers · 79 posts · Server ruby.social⚠️ Got this warning upgrading your #Rails app? 👇
Don’t worry. Gelsey Torres explains through a step-by-step guide how to address the issue if you come across it in your codebase. 🔒
#rails #fastruby #UpgradeRails #sqlinjection #CISO
heise Security · @heisec
10340 followers · 568 posts · Server social.heise.de
Cybersecurity-Bericht: Durchschnittlich 11.000 Sicherheitslücken in Unternehmen
Im Bereich Security hat Deutschland laut einem Bericht viel Nachholbedarf. Ein zur Schwarz-Gruppe gehörendes IT-Unternehmen stellt ein desaströses Zeugnis aus.
#darknet #security #sqlinjection #news
Anonymous :anarchism: 🏴 · @YourAnonRiots
5625 followers · 35235 posts · Server mstdn.social
Attention! Multiple new #SQLinjection vulnerabilities discovered in MOVEit Transfer, posing a risk of unauthorized access to the database.
https://thehackernews.com/2023/06/new-critical-moveit-transfer-sql.html
Upgrade to the latest versions to protect sensitive information. #CyberSecurity #infosec
#InfoSec #CyberSecurity #sqlinjection
fthy · @fthy
8 followers · 83 posts · Server mastodon.greenNew MOVEit Transfer web application patch fixing multiple SQL Injection (CVE pending) https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-CVE-Pending-Reserve-Status-June-9-2023 Affected MOVEit Transfer versions: before 2021.0.7 (13.0.7), 2021.1.5 (13.1.5), 2022.0.5 (14.0.5), 2022.1.6 (14.1.6), 2023.0.2 (15.0.2) #vulnerability #infosec #MOVEit #rce #sqlinjection
#vulnerability #infosec #moveit #rce #sqlinjection
Salvatore Lombardo · @Slvlombardo
5 followers · 171 posts · Server mstdn.social
#Zeroday, #SQLInjection sfruttato attivamente nel Software #MoVEit - The Computer Security News (BLOG)
#cybersecurity #hacking https://www.computersecuritynews.it/zero-day-sql-injection-sfruttato-attivamente-nel-software-moveit/
#Hacking #CyberSecurity #moveit #sqlinjection #zeroday
FastRuby.io · @FastRuby
18 followers · 39 posts · Server ruby.social⚠️ Got this warning upgrading your #Rails app? 👇
Don’t worry. Gelsey Torres explains through a step-by-step guide how to address the issue if you come across it in your codebase. 🔒
#rails #fastruby #UpgradeRails #sqlinjection #CISO