For my next book, I’m trying to develop a reasonably comprehensive list of technologies which are potentially vulnerable to injection attacks. SQL injection is the most common, but there are of course many others. So far here are the ones I\u00e2\u20ac\u2122ve got. What else am I missing?<\/p>\n
<\/p>\n
Partially, this is a question of which languages have an eval() function, either directly or indirectly. For instance, although theoretically one could imagine a service that accepted Java source code from a user, compiled it, and then executed the result, that’s so complex an approach few if any services have been implemented like that. <\/p>\n
By contrast the So where else do injection attacks arise? I can’t imagine this list exhausts all the possibilities. <\/p>\n","protected":false},"excerpt":{"rendered":" For my next book, I’m trying to develop a reasonably comprehensive list of technologies which are potentially vulnerable to injection attacks. SQL injection is the most common, but there are of course many others. So far here are the ones I\u00e2\u20ac\u2122ve got. What else am I missing? SQL XPath XQuery XSLT JavaScript LDAP<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[410],"class_list":["post-1000390","post","type-post","status-publish","format-standard","hentry","category-web-development","tag-flash"],"_links":{"self":[{"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/posts\/1000390","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/comments?post=1000390"}],"version-history":[{"count":0,"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/posts\/1000390\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/media?parent=1000390"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/categories?post=1000390"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.elharo.com\/blog\/wp-json\/wp\/v2\/tags?post=1000390"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}eval()<\/code> function in JavaScript will take any string and execute it. That’s why JSON worries me so much. SQL is not execute directly, but most languages including PHP, JSP, and so forth have ways to easily convert strings into SQL statements. If you’re not careful about what’s in those strings, you can find all records in your database deleted because of an errant semicolon.<\/p>\n