SitePoint Sponsor

User Tag List

Results 1 to 2 of 2
  1. #1
    SitePoint Enthusiast
    Join Date
    May 2008
    Location
    Brisbane, Australia
    Posts
    26
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Site Database Accessed

    Hi,

    A client of mine who I took over from an existing developer has a website build in ASP using MySQL database. They received an email from a random contact yesterday stating there is a vulnerability in the site and he was able to access the database though the ASP code / forms some how, to prove it he provided the data from one of the tables in the DB.

    As I have really little idea on ASP does anyone has any experience with this and maybe how I could replicate his testing to work out the issue and fix it for them?

    Thanks

  2. #2
    SitePoint Wizard siteguru's Avatar
    Join Date
    Oct 2002
    Location
    Scotland
    Posts
    3,631
    Mentioned
    2 Post(s)
    Tagged
    0 Thread(s)
    SQL Injection Prevention

    That's what you need to read up on. It's not a uniquely ASP issue - it's something that need to be considered for any application that interfaces with a database.
    Ian Anderson
    www.siteguru.co.uk


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •