Many Web pages accept parameters from web users and generate SQL queries to the database. SQL Injection is a trick to inject SQL script/command as an input through the web front end. Your application may be susceptible to SQL Injection attacks when you incorporate invalidated user input into the database queries. Particularly susceptible is a code that constructs dynamic SQL statements with unfiltered user input. Consider the following example code: Sql DataAdapter myCommand = new SqlDataAdapter( "Select * from Users Where UserName = ' "+txtuid.Text+" ", conn); Attackers can inject SQL by terminating...
Saturday, 14 July 2012
Wednesday, 11 July 2012
Auto Refresh a Web Page using AJAX
AJAX is nothing but Asynchronous JavaScript and XML. It is not a new programming language, but a new way to use the existing standards. It is the art of exchanging data with a server, and updating parts of a web page without reloading the whole page!! Ajax is not a single technology, but a group of technologies. HTML and CSS can be used in combination to mark up and style information. JavaScript and XMLHttpRequest object provide a method for exchanging data asynchronously between browser and server to avoid full page reloads. Using JavaScript...
Sunday, 8 July 2012
Checking if your Computer has been violated and infected with DNS Changer
Domain name system (DNS) is the part of the internet that links a website name (say example.com) to its numerical internet protocol equivalent (say 123.456.789.098). As the cyber world awaits Monday, when the FBI will shut down servers affected by the DNS changer malware, there is still a day to check if your system has been affected. Various cyber security firms are offering free solutions. You can visit www.mcafee.com/dnsdetect to check if your computer is infected. You can also manually check if your DNS server has been changed. Step I: Open Command Prompt....
Monday, 2 July 2012
How to create CAPTCHA using PHP
CAPTCHA: Completely Automated Public Turing Test To Tell Computers and Humans Apart. A CAPTCHA is a program that protects websites against bots by generating and grading tests that humans can pass but current computer programs cannot. For example, humans can read distorted text as the one shown alongside, but current computer programs can't: The term CAPTCHA (for Completely Automated Public Turing Test To Tell Computers and Humans Apart) was coined in 2000 by Luis von Ahn, Manuel Blum, Nicholas Hopper and John Langford of Carnegie Mellon University. Generating a simple CAPTCHA and its...
Subscribe to:
Posts (Atom)
