[issue11685] possible SQL injection into db APIs via table names... sqlite3

Martin v. Löwis report at bugs.python.org
Sat Mar 26 18:16:54 CET 2011

Previous message: [issue11685] possible SQL injection into db APIs via table names... sqlite3
Next message: [issue11685] possible SQL injection into db APIs via table names... sqlite3
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Martin v. Löwis <martin at v.loewis.de> added the comment:

But putting untrusted strings into the table name is a bug in the application, not in Python.

----------

_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue11685>
_______________________________________

Previous message: [issue11685] possible SQL injection into db APIs via table names... sqlite3
Next message: [issue11685] possible SQL injection into db APIs via table names... sqlite3
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Python-bugs-list mailing list