“onsidered an improvement of the previous ZF2016-02 and ZF2014-04 advisories. As a final consideration, we recommend developers either never use user input for these operations, or filter user input thoroughly prior to invoking Zend_Db. You can use the Zend_Db_Select:”
ZF2016-03: Potential SQL injection in ORDER and GROUP functions of ZF1 The implementation of ORDER BY and GROUP BY in Zend_Db_Select remained prone to SQL injection when a combination of SQL expres...
“onsidered an improvement of the previous ZF2016-02 and ZF2014-04 advisories. As a final consideration, we recommend developers either never use user input for these operations, or filter user input thoroughly prior to invoking Zend_Db. You can use the Zend_Db_Select:”
このブックマークにはスターがありません。
最初のスターをつけてみよう!
Security Advisory - Security - Zend Framework
ZF2016-03: Potential SQL injection in ORDER and GROUP functions of ZF1 The implementation of ORDER BY and GROUP BY in Zend_Db_Select remained prone to SQL injection when a combination of SQL expres...
7 人がブックマーク・3 件のコメント
\ コメントが サクサク読める アプリです /