Full Disclosure: Re: Cookie based SQL Injection

Nmap Security Scanner
- Intro
- Ref Guide
- Install Guide
- Download
- Changelog
- Book
- Docs
Security Lists
- Nmap Hackers
- Nmap Dev
- Bugtraq
- Full Disclosure
- Pen Test
- Basics
- More
Security Tools
Site News
Advertising
About/Contact
Sponsors:

Re: Cookie based SQL Injection

From: Valdis.Kletnieks () vt edu
Date: Tue, 06 Mar 2012 15:43:41 -0500

On Tue, 06 Mar 2012 14:28:51 CST, Adam Behnke said:

Unlike other parameters, cookies are not supposed to be handled by users.


Any site that designs its security model around that concept will get what
it richly deserves.

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Cookie based SQL Injection Adam Behnke (Mar 06)
- Re: Cookie based SQL Injection Valdis . Kletnieks (Mar 06)
  - Re: Cookie based SQL Injection Zach C. (Mar 06)
    - Re: Cookie based SQL Injection Benji (Mar 06)