Latest ads
-
Power Lifting Lever Belt- SkullVamp
- Updated:
-
port.lk Domain for sale
- Lankan-Tech
- Updated:
-
Colombo Kaduwela - Two Storey House for Sale- dilrasan
- Updated:
-
Wechat qr verification
- Pawan2005
- Updated:
-
🚀 GOOGLE AI PRO 18 MONTHS ACTIVATION 🚀- sayuru bandara
- Updated:
SQL injection.........
- Thread starter thilini1990
- Start date
Menna eka gana podi wistharayak: SQL Injection-Wikipedia
Basically SQL injection walin pulwan SQL statement ekaka parameters use karala statement eken adahas karala thiyana deyata wada wenath deyak karaganna. Oya Wikipedia article eke example ekak menna :
Hithanna menna me wage statement ekak thiyanawa kiyala
Api hithamu oya statement eka login page ekakata daala thiyanawa kiyala. Kauruhari valid user kenek valid user name ekak enter kaloth oya query eken not null result ekak return karanna one. Namuth userName kiyana eka wenuwata api
wage ekak enter kaloth statement eka menna me widihata wenas wenawa
Oya statement eken hama welawema records rerun karanawa, mokada hama welawema t=t kiyana eka true wena nisa. Eeh kiyanne boru user kenekuta unath SQL oya SQL statement eka use karala records okkoma retrieve karaganna puluwan. Oya widihata horen samahara SQL statements exploit karana eka thamai SQL injection wala basic idea eka.
Basically SQL injection walin pulwan SQL statement ekaka parameters use karala statement eken adahas karala thiyana deyata wada wenath deyak karaganna. Oya Wikipedia article eke example ekak menna :
Hithanna menna me wage statement ekak thiyanawa kiyala
Code:
SELECT * FROM users WHERE name = '" + userName + "';
Code:
a' or 't'='t
Code:
SELECT * FROM users WHERE name = 'a' OR 't'='t';ane thankz....... wap site eheka mage profile eka wena kenek ara gaththa.. eya eka kale oken lu..... eka wenna puluwanda?? elakiri eketh ehema karala mage profile eka kawuru hari ganiwidha? 
