This article is a mirror article of machine translation, please click here to jump to the original article.

Architect_Programmer_Code Agriculture Network»Architect Other Technologies Safe offense and defense Is SQL injection that easy with stored procedures?
View: 12849|Reply: 0

[Safety Knowledge] Is SQL injection that easy with stored procedures?

[Copy link]
Posted on 10/26/2014 1:09:47 PM | | |
A Stored Procedure is a set of SQL statements that are compiled and stored in a database to complete a specific function in a large database system, and the user executes it by specifying the name of the stored procedure and giving parameters (if the stored procedure has parameters). Stored procedures are an important object in a database that should be used in any well-designed database application.
In layman's terms, the storage process is to splice multiple tables together to form a new table

Is SQL injection that easy with stored procedures? The first thing to be sure is that with stored procedures,

Most fully automated SQL injection tools are estimated to be unable to inject successfully

Since SQL statements can be spliced, parameters can be passed,

It can be said that with stored procedures, the security of data is greatly improved, but it does not represent the absolute security of data






Previous:Look at other people's designs, designers, you are too bad!
Next:Literacy stickers, major brands of motherboards boot into the BIOS boot hotkey

Related Posts
Disclaimer:
All software, programming materials or articles published by Code Farmer Network are only for learning and research purposes; The above content shall not be used for commercial or illegal purposes, otherwise, users shall bear all consequences. The information on this site comes from the Internet, and copyright disputes have nothing to do with this site. You must completely delete the above content from your computer within 24 hours of downloading. If you like the program, please support genuine software, purchase registration, and get better genuine services. If there is any infringement, please contact us by email.
Mail To:help@itsvse.com