Reply

erik.peterson Posted: 01-17-2007 11:52 AM

rated by 0 users

A past blog posting entitled 'How Prevalent Are SQL Injection Vulnerabilities?', is now also available as a webcast.

Abstract:

According to Mitre, web application vulnerabilities have now claimed the top three spots on the CVE request list, with SQL injection taking the silver medal. While these statistics are significant, they only provide insight into vulnerablities in new applications and should not be interpreted as the vulnerabilities actually found 'in the wild'. Despite this fact, SQL injection remains a popular attack vector. Using the Google Search API, we sought to obtain empirical evidence of the prevalence of SQL injection vulnerabilities present on the Internet today.

During this on-demand webcast, you will learn:

• The risk posed by SQL injection
• How atackers leverage search engines to identify websites vulnerable to SQL injection
• How the Google API can be used to build an automated tool for identifying SQL injection
• Emperical evidence demonstrating the prevalence of SQL injection vulnerabilities on the Internet
• Secure programming techniques for protecting websites from SQL injection
  

Reply

whips04r replied on 01-13-2008 6:30 PM

rated by 0 users

Following submission of private details, the link fails:

Sorry, we can't find that page.