WHID 2006-22: SQL injection in a banking application

A CIO of a bank in Singapore reports that many application layer vulnerabilities, including SQL injection, where discovered in a banking application they purchased before it was put into production.

Additional information:

Pulled in All Directions [CIO Asia, Jan 1 2006]

Attack Method:

SQL Injection

Incident Outcome:

Disclosure Only

Add new comment

WHID 2006-22: SQL injection in a banking application

Science or Religion?

Further Research

Presentations

You are here

WHID 2006-22: SQL injection in a banking application

Science or Religion?

Further Research

Presentations