http://tomkelshaw.com/2008/sql-insert-exploit-humour-is-the-second-lowest-form-of-humour/ Digital Strategist and all-round nice guy Fri, 11 May 2012 16:54:53 +0000 http://wordpress.org/?v=2.9.1 hourly 1 http://tomkelshaw.com/2008/sql-insert-exploit-humour-is-the-second-lowest-form-of-humour/comment-page-1/#comment-5249 rsrvctrl Wed, 19 May 2010 15:49:24 +0000 http://tommyk.tumblr.com/post/35954234#comment-5249 You're confusing the sql INSERT INTO command with sql injection techniques. INSERT INTO is rarely used in injections, more often thing like SELECT * FROM or DROP TABLE. For both you need the table name, a good hint is usually the form name. You're confusing the sql INSERT INTO command with sql injection techniques. INSERT INTO is rarely used in injections, more often thing like SELECT * FROM or DROP TABLE. For both you need the table name, a good hint is usually the form name.

]]>