cpython icon indicating copy to clipboard operation
cpython copied to clipboard
Published 1 month ago verified publisher icon python

Docs: sqlite3 injection attack example is not an example of an SQL injection attack

Open erlend-aasland opened this issue 3 years ago • 0 comments

The SQL injection attack example in the sqlite3 docs takes no user input, hence it is not susceptible to an injection attack and serves badly as an example.

Also, it does not mention injection attacks that exploit the load_extension SQL API.

  • PR: gh-99270

erlend-aasland avatar Aug 24 '22 20:08 erlend-aasland