in reply to Avoiding SQL insecurities

try to use taint mode in your cgi scripts (-T flag)
perldoc perlsec

Replies are listed 'Best First'.
Re^2: Avoiding SQL insecurities
by samtregar (Abbot) on Jul 14, 2004 at 21:28 UTC
    That won't help avoid SQL injection attacks unless you also turn DBI's TaintIn option on. Otherwise DBI will happily accept a tainted string as an SQL query.

    -sam

[reply]

In Section Seekers of Perl Wisdom