http://qs1969.pair.com?node_id=11155114


in reply to Re^5: DBI do() SQL injection
in thread DBI do() SQL injection

Even if the table isn't dropped, it's still an injection bug since the code did not behave as desired (i.e. did not use  42', 'Batman'); drop table customers; -- as the id).