Thank you very much for taking time to give feedback. This means a lot. I am very glad you found the videos useful. I have organised all the Dot Net & SQL Server videos in to playlists, which could be useful to you ua-cam.com/users/kudvenkatplaylists?view=1&sort=dd If you need DVDs or to download all the videos for offline viewing please visit www.pragimtech.com/order.aspx Slides and Text Version of the videos can be found on my blog csharp-video-tutorials.blogspot.com Tips to effectively use my youtube channel. ua-cam.com/video/y780MwhY70s/v-deo.html If you want to receive email alerts, when new videos are uploaded, please subscribe to my youtube channel. ua-cam.com/users/kudvenkat If you like these videos, please click on the THUMBS UP button below the video. May I ask you for a favor. I want these tutorials to be helpful for as many people as possible. Please share the link with your friends and family who you think would also benefit from them. Good Luck Venkat
Hi, thank you very much for taking time to give feedback. I am very glad you found these videos useful. May I ask you for a favour. I am receiving lot of questions everyday from our youtube users, and finding it extremely difficult to answer all the questions in time. I hope, you can help me answer a few questions for which you know the answer. Hope you can help. Good Luck.
Hi, thank you very much for taking time to give feedback. I am very glad you found these videos useful. To receive email alerts, when new videos are uploaded, please subscribe to my youtube channel. May I ask you for a favour. I want these tutorials to be helpful for as many people as possible. Please share the link with your friends and family who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video.
This is one of the subjects where I have read and watched a whole lot of tutorials without really understanding much of it. When I see your tutorials, I understand it instantly. Wish I had come across your great videos earlier. Would have saved me an awful lot of time. Tnx
Thank you very much for taking time to give feedback. In the description of this video, I have included the link for ASP .NET, C#, and SQL Server playlists. All the videos are arranged in logical sequence in these playlists, which could be useful to you. Please share the link with your friends who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video. For email alerts, when new videos are uploaded, you may subscribe to my channel.
Great job. I had never thought of it(the SQL engine attack). I have watched your other videos and I must say that the way you explain things is very good. Keep up the good work. You are helping a lot of us out here.
Nice explanation of SQL Injection in simple terms. But just one concern that the stored procedure could still be vulnerable to sql injection, if the input parameter is concatanated with sql statement within the stored procedure.
This video is about Injecting SQL, when we build sql commands by concatenating user input. Of course, the video is about SQL injection. Let me know, that part that you are not clear about. By the way SQL Injection happens, when the ADO.NET code is poorly written.
But i have a question you gave us a example of the query which the user can write to delete any data from the database but how he would know the exact name of table .
hi venkat thanks for this tutorials. question: where (typically) does the parameter replacement happen? when using sqlparameters. P.S. i'm already subbed and again thanks for this tutorials :)
Hi, thank you very much for taking time to give feedback. I am very glad you found these videos useful. To receive email alerts, when new videos are uploaded, please subscribe to my youtube channel. May I ask you for a favour. I want these tutorials to be helpful for as many people as possible. Please share the link with your friends and family who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video.
Thank you very much for taking time to give feedback. In the description of this video, I have included the link for ASP .NET, C#, and SQL Server playlists. All the videos are arranged in logical sequence in these playlists, which could be useful to you. Please share the link with your friends who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video. For email alerts, when new videos are uploaded, you may subscribe to my channel.
awesome awesome awesome as always
Thank you very much for taking time to give feedback. This means a lot. I am very glad you found the videos useful.
I have organised all the Dot Net & SQL Server videos in to playlists, which could be useful to you
ua-cam.com/users/kudvenkatplaylists?view=1&sort=dd
If you need DVDs or to download all the videos for offline viewing please visit
www.pragimtech.com/order.aspx
Slides and Text Version of the videos can be found on my blog
csharp-video-tutorials.blogspot.com
Tips to effectively use my youtube channel.
ua-cam.com/video/y780MwhY70s/v-deo.html
If you want to receive email alerts, when new videos are uploaded, please subscribe to my youtube channel.
ua-cam.com/users/kudvenkat
If you like these videos, please click on the THUMBS UP button below the video.
May I ask you for a favor. I want these tutorials to be helpful for as many people as possible. Please share the link with your friends and family who you think would also benefit from them.
Good Luck
Venkat
Hi, thank you very much for taking time to give feedback. I am very glad you found these videos useful. May I ask you for a favour. I am receiving lot of questions everyday from our youtube users, and finding it extremely difficult to answer all the questions in time. I hope, you can help me answer a few questions for which you know the answer. Hope you can help. Good Luck.
Hi, thank you very much for taking time to give feedback. I am very glad you found these videos useful. To receive email alerts, when new videos are uploaded, please subscribe to my youtube channel. May I ask you for a favour. I want these tutorials to be helpful for as many people as possible. Please share the link with your friends and family who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video.
This is one of the subjects where I have read and watched a whole lot of tutorials without really understanding much of it. When I see your tutorials, I understand it instantly. Wish I had come across your great videos earlier. Would have saved me an awful lot of time. Tnx
Thank you very much for taking time to give feedback. In the description of this video, I have included the link for ASP .NET, C#, and SQL Server playlists. All the videos are arranged in logical sequence in these playlists, which could be useful to you. Please share the link with your friends who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video. For email alerts, when new videos are uploaded, you may subscribe to my channel.
Brilliant explanation as usual!
Still relevant after so many years.
Finally i understood sql injection!! Kudos!!!
Great job. I had never thought of it(the SQL engine attack).
I have watched your other videos and I must say that the way you explain things is very good. Keep up the good work. You are helping a lot of us out here.
Very much useful....I have learned SQL Server only by the help from your videos...
Very good explanation for easily understanding the SQL injection
Beautifully demonstrated, thank you!!!
Nice explanation of SQL Injection in simple terms. But just one concern that the stored procedure could still be vulnerable to sql injection, if the input parameter is concatanated with sql statement within the stored procedure.
This video is about Injecting SQL, when we build sql commands by concatenating user input. Of course, the video is about SQL injection. Let me know, that part that you are not clear about. By the way SQL Injection happens, when the ADO.NET code is poorly written.
awesomely explained
Well SQL injection is very interesting.
Nice explanation!! Thank you. Regards Paco from Mexico
Awesome video! Thank you for sharing!
Superb. Thanks.
Nice explanation kudvenkat.. Thanks.. :D
Thank you very much! Very easy to understand (:
But i have a question
you gave us a example of the query which the user can write to delete any data from the database
but how he would know the exact name of table .
very well expalined sir u r great sir
Great video thank you
Nice video thank you
hello sir,
how to store
in sql using asp?
i replaced
with "br" but as i retrieve it with gridveiw it does not change the line.
Great lesson thanks very much
Which playlist this videos belongs to?
hi venkat thanks for this tutorials.
question: where (typically) does the parameter replacement happen?
when using sqlparameters.
P.S. i'm already subbed and again thanks for this tutorials :)
Very useful thank you
very helpful. thanks.
thanks for your good explanation , but i have question how can i delete data from table (sql injection ) if i don't know the name of table?
Hello Venkat, You are just awesome...! :)
Please do tutorial about ViewStateUserKey and CSRF
thanks...!
Is string.format("select * from where id={0},''abc") and sql parameter both will avoid sqlinjection or only sqlparameterised will avoid sql injections
No, this won't stop SQL injection because with String.Format you are just replacing the text and not passing the value as a parameter.
please explain mail splitting in sql by using sub string
Concatinating string with Stored Procedure like "sp_getdetailswithid='"+txtid.text+'"; will it happen sql injection attack
Thankyou so much sir
if i use only "select col1, col2 from table1" without any parameters passing i will it fall into sql injection ,plz reply for my queries
Thank you!
how does he know the table name or database name to delete
Thanks
❤
Hi, thank you very much for taking time to give feedback. I am very glad you found these videos useful. To receive email alerts, when new videos are uploaded, please subscribe to my youtube channel. May I ask you for a favour. I want these tutorials to be helpful for as many people as possible. Please share the link with your friends and family who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video.
Thank you very much for taking time to give feedback. In the description of this video, I have included the link for ASP .NET, C#, and SQL Server playlists. All the videos are arranged in logical sequence in these playlists, which could be useful to you. Please share the link with your friends who you think would also benefit from them. If you like these videos, please click on the THUMBS UP button below the video. For email alerts, when new videos are uploaded, you may subscribe to my channel.