Sql injection Flagging wrong word

ssteenkiste / nettiers

Automatically exported from code.google.com/p/nettiers

1 stars 0 forks source link

Sql injection Flagging wrong word #351

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago

What steps will reproduce the problem?
1.use DetectSqlInjection
2.use text 'Executives' in field
3.and it signals this to be a sql injection, probably seeing the EXEC at the 
beginning.

What is the expected output? What do you see instead?

What version of .netTiers and CodeSmith are you using?
.nettier 2.2 or 2.3?     CS 4.1

Please provide any additional information below.

Original issue reported on code.google.com by telecast...@gmail.com on 28 Oct 2010 at 2:25

GoogleCodeExporter commented 9 years ago

Hello,

Could you please be more specific in your steps. I've never heard of 
"DetectSqlInjection", is this a third party tool for detecting sql injection? 
Can you please send more information and a sample schema and some snippets that 
we will need to reproduce this issue.

Thanks
-Blake Niemyjski

Original comment by bniemyjski on 29 Oct 2010 at 2:33

Changed state: AwaitingInfo