Home/ Questions/Q 1038445
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-16T14:58:35+00:00

Possible Duplicate: XKCD SQL injection – please explain What is the general concept behind

  • 0

Possible Duplicate:
XKCD SQL injection – please explain

What is the general concept behind sql injection ?

Being a rails developer

This is unsafe

  Booking.find(:all, :conditions => [ 'bookings.user_id = #{params[user_id]]}'] )

and this is safe:–

 Booking.find(:all, :conditions => [ 'bookings.user_id = ?', params[user_id]] )

am i right?

So my question is how the sql injection is done?
How those guys do some stuff like that. Any live example/ tutorial where somebody is showing this kind of stuff. Anything basic for knowing the logic.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    SQL Injection happens when a programmer gets lazy. A vulnerable query would look like this:

    DECLARE @cmd varchar(256)

SET cmd='SELECT @col FROM Table'
EXEC @cmd

    With @col being a variable passed into a stored procedure.

    Usually, the user would enter a column in that already exists for that variable. But a more devious user could enter something like this:

    * FROM Table; DROP DATABASE data;--

    The * FROM Table; finishes off the previous statement. Then, DROP DATABASE data; is the payload that does bad things, in this case, dropping the database. Finally, the — comments out the rest of the query so it doesn’t get any errors from the injection.

    So, instead of executing this:

    SELECT column
FROM Table

    You get this:

    SELECT *
FROM Table;
DROP DATABASE data;
--

    Which is not good.

    And this:
    alt text

    • 0