Re: Options for poorly performing SQL

• From: Stephane Faroult <sfaroult@xxxxxxxxxxxx>
• To: sbecker6925@xxxxxxxxx
• Date: Mon, 04 Feb 2013 16:30:10 +0100

Sandra

> They refuse to even look at the statement because
> it is dynamically created in the application using javaScript.

That's the best part. Try to read on how easily one can tweak 
client-side scripting, lecture somebody high enough in the hierarchy on 
SQL injection, and I think that your application will be changed very fast.

HTH,


S Faroult

--
//www.freelists.org/webpage/oracle-l

• References:
  • Options for poorly performing SQL
    • From: Sandra Becker

Other related posts:

• » Options for poorly performing SQL- Sandra Becker
• » RE: Options for poorly performing SQL- Coll-Barth, Michael
• » RE: Options for poorly performing SQL- Ric Van Dyke
• » Re: Options for poorly performing SQL - Stephane Faroult
• » Re: Options for poorly performing SQL- Sandra Becker
• » Re: Options for poorly performing SQL- Carlos Sierra
• » Re: Options for poorly performing SQL- Andrew Kerber
• » Re: Options for poorly performing SQL- Job Miller
• » RE: Options for poorly performing SQL- Patterson, Joel
• » Re: Options for poorly performing SQL- Paul Drake
• » Re: Options for poorly performing SQL- Michael Fontana
• » Re: Options for poorly performing SQL- Andrew Kerber
• » RE: Options for poorly performing SQL- Coll-Barth, Michael
• » Re: Options for poorly performing SQL- Sandra Becker

1. Home
2. oracle-l
3. Archive
4. 02-2013

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---