dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
259fd19c1bdf9592d0568d3658b3cb7d044d778b
WebGoat/webgoat-lessons/sql-injection/src/main/resources/lessonPlans/en/SqlInjection_content12.adoc
Nanne Baars 259fd19c1b - Introduced user registration 
- Now using Spring Boot for classloading, this way local development does not need to restart the complete server
- Fixed all kinds of dependencies on the names of the lessons necessary to keep in mind during the creation of a lesson.
- Simplied loading of resources, by adding resource mappings in MvcConfig.
- Refactored plugin loading, now only one class is left for loading the lessons.
2017-03-22 11:35:14 +01:00

14 lines
337 B
Plaintext
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

== Input Validation Required?
=== Since my queries are no longer injectable do I still need to validate my input?
* *YES!*
=== Prevents other types of attacks from being stored in the database
* Stored XSS
* Information leakage
* Logic errors business rule validation
* SQL Injection
=== Often the database is considered trusted
Reference in New Issue View Git Blame Copy Permalink