Skip to content

Could SQL Injection be dangerous even when perfectly safe?

Despite being one of the oldest database attack methods, SQL Injection still persists for decades at the OWASP Top Ten list of critical security risks to web applications.

In fact, instead of dying out, it only seems to be getting more clever and even automated. With “hacker bots” scouring the web and automatically probing for injection vulnerabilities to exploit.

But today I’m not actually going to talk about that. Today, I’m going to ask the question: When is SQL Injection dangerous, even if it’s perfectly safe?

Read more…

T-SQL Tuesday #152 – Which version of my database was deployed? It depends!

One of the things that are not so clear about SSDT specifically and database versioning in general, is how should one identify which “version” of your database project was last deployed to your server?

There are many ways to go about doing this. Which is the best one?

In this article, I hope to review several interesting methods of achieving “database versioning”. Some are well-known and obvious, and some are less so. Either way, it should be interesting.

Read more…


Something went wrong. Please refresh the page and/or try again.

Follow My Blog

Get new content delivered directly to your inbox.

Other ways to find me:


%d bloggers like this: