SQL injection attacks

Posted Mar 30, 2006 19:54 UTC (Thu) by jake (editor, #205)
In reply to: SQL injection attacks by yodermk
Parent article: SQL injection attacks

> SELECT id FROM users WHERE name='' OR 1=1' AND pass='' OR 1=1 LIMIT 1';

> which would be an SQL error? Or am I missing something???

No, nice catch.

$user = "' OR 1=1 OR name='";
$pass = "' OR 1=1 LIMIT 1 --";

should do the trick ...

jake