Skip to content

Instantly share code, notes, and snippets.

@lgolubyev
Created May 24, 2022
Embed
What would you like to do?
string strQry = "SELECT * FROM Users WHERE UserName='" + txtUser.Text + "' AND Password='"
+ txtPassword.Text + "'";
EXEC strQry // SQL Injection vulnerability!
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment