I've been asked to provide information on Sql Injection and Umbraco as we're trying to achieve PCI DSS compliance. Can anyone provide me with some information regarding this?
From what I've seen in the source code all queries to the database uses SqlParameters which from what i know is the best way to protect against sql injections. I haven't heard of any attack or so against an Umbraco site? Be aware that if you are using packages i can't say how they are working as the may have access to the same db and could possibly contain security holes.
Sql Injection
Hi
I've been asked to provide information on Sql Injection and Umbraco as we're trying to achieve PCI DSS compliance. Can anyone provide me with some information regarding this?
Thanks
From what I've seen in the source code all queries to the database uses SqlParameters which from what i know is the best way to protect against sql injections. I haven't heard of any attack or so against an Umbraco site? Be aware that if you are using packages i can't say how they are working as the may have access to the same db and could possibly contain security holes.
is working on a reply...