On 9/7/07, Alessandro Vercelli <alever@xxxxxxxxx> wrote: > > Hi everybody, > while "surfing", I noticed the following: > > http://tinyurl.com/338fhx > > I'm absolutely not a security expert on oracle products, but I'm sure that > some people uses a destructive criticism to blame instead of giving a better > solution.... > > If these SQL injection vulnerabilities are in new code (this is 11g) then there's really not much excuse for it, and the criticism is warranted. -- Jared Still Certifiable Oracle DBA and Part Time Perl Evangelist