dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixed typo

Browse Source
This commit is contained in:
Nanne Baars 2017-07-25 17:40:55 +02:00
parent c87f75ed18
commit b06fb72a74
1 changed files with 3 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
webgoat-lessons/sql-injection/src/main/resources/lessonPlans/en/SqlInjection_content12a.adoc
View File

@ -1,6 +1,6 @@
== Order by clause == Order by clause
Question: Does a preparared statement always prevent against an SQL injection? Question: Does a prepared statement always prevent against an SQL injection?
Answer: No it does not Answer: No it does not
Let's take a look at the following statement: Let's take a look at the following statement:
@ -30,12 +30,11 @@ selectExpression:
Based on HSQLDB Based on HSQLDB
---- ----
This means an `orderExpression` van be a `selectExpression` which can be a function as well, so for example with This means an `orderExpression` can be a `selectExpression` which can be a function as well, so for example with
a `case` statement we might be able to ask the database some questions, like: a `case` statement we might be able to ask the database some questions, like:
---- ----
select * from users order by select * from users order by (case when (true) then lastname else firstname)
(select case when (true) then lastname else firstname)
---- ----
So we can substitute any kind of boolean operation in the `when(....)` part. The statement will just work because So we can substitute any kind of boolean operation in the `when(....)` part. The statement will just work because