Skip to content

Docs: sqlite3 injection attack example is not an example of an SQL injection attack #96250

New issue
New issue
Closed
Closed
Docs: sqlite3 injection attack example is not an example of an SQL injection attack#96250
Assignees
erlend-aasland
Labels
docsDocumentation in the Doc dirtopic-sqlite3type-featureA feature request or enhancement
@erlend-aasland

Description

@erlend-aasland
erlend-aasland
opened on Aug 24, 2022

The SQL injection attack example in the sqlite3 docs takes no user input, hence it is not susceptible to an injection attack and serves badly as an example.

Also, it does not mention injection attacks that exploit the load_extension SQL API.

Metadata

Metadata

Assignees

Labels

docsDocumentation in the Doc dirtopic-sqlite3type-featureA feature request or enhancement

Projects

sqlite3 issues

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions