Browse by Tags
Sorry, but there are no more tags available to filter with.
-
Lateral SQL injection in Oracle
-
David Litchfield has just released a paper, showing that it is possible to do SQL injection using DATE or even NUMBER data types to exploit a PL/SQL procedure in Oracle RDBMS! The attacker can exploit a PL/SQL procedure that doesn't even take user...