Tying Down the Source Code

added by DotNetKicks
1/20/2017 3:39:52 PM

1 Kicks, 298 Views

Database source code analysis can flush out weakly-authenticated database users, over-privileged users and roles, or stored procedure code that concatenates a parameter directly into the dynamic SQL string that is to be executed, and so is vulnerable SQL injection. This is great for the development team, but it is also wonderful for the hacker.