View Single Post

  #8  
Old 04-29-2011, 05:24 PM
Biddykins's Avatar
Biddykins Biddykins is offline
Administrator
I am Bid!  
Join Date: Oct 2001
Age: 36
Posts: 6,724
Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.Biddykins is a God.
Quote:
Originally Posted by Rick
I thought there was an update a while ago that made it so you can't do multiple commands in a single query. So the whole

[COMMAND]; [COMMAND] doesn't work --
if the SQL query is SELECT * FROM students WHERE i = (url input), you couldn't write 1'; DROP TABLE students;--

If I'm wrong and you CAN run multiple commands, then I must've been doing it wrong and lost profit on tons of systems.

And how does SQL injection relate to profit at all? I'm seriously lost here, haha.
__________________
"Bid is the man of the hour, get him a damn award or somthing."
"I party with my dad, we've done a few things together I probably shouldn't speak about."
"As a Christian, I find all forms of religion (except Christianity) to be very harmful to it's members"
"If he is not smart enough to invent something to improve his own quality of life how is he smart enough to tell us all there is no GOD"
Reply With Quote