Category "sql-injection"

Can SQL be injected when the input is hashed?

The passwords and my SQL database are hashed. If the input is hashed, can the field be injected? The hash is SHA256. My command is to be: SELECT true FROM acc

Can keys or hashes trigger an injection attack?

Can hashes or keys generated (either intentionally or accidentally) that would trigger an injection attack? For example, if the hash or key was generated as som

Checkmarx report sql injection JpaRepository

im running Checkmarx on my code and im getting an sql injection vulnerability. this is the simplified method im using public String assignRole(String userId, St

How to scan particular URL or page alone in owasp zap

I have installed OWASP ZAP 2.8.0 and scan our site fully. In result we got some SQL injection URL's or pages. So We have fixed that SQL injection issues in deve