I’m doing an audit of a system, which the developers insist is SQL injection

Question

0

Asked: May 16, 20262026-05-16T10:55:39+00:00 2026-05-16T10:55:39+00:00

I’m doing an audit of a system, which the developers insist is SQL injection

0

I’m doing an audit of a system, which the developers insist is SQL injection proof. This they achieve by stripping out the single-quotes in the login form – but the code behind is not parameterized; it’s still using literal SQL like so:

username = username.Replace("'", "");
var sql = "select * from user where username = '" + username + "'";

Is this really secure? Is there another way of inserting a single quote, perhaps by using an escape character? The DB in use is Oracle 10g.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-16T10:55:39+00:00

Editorial Team

2026-05-16T10:55:39+00:00Added an answer on May 16, 2026 at 10:55 am

Have a look at the testing guide here: http://www.owasp.org/index.php/Main_Page That should give you more devious test scenarios, perhaps enough to prompt a reassessment of the SQL coding strategy 🙂

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m doing an audit of a system, which the developers insist is SQL injection

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply