I saw a shopping website for a shopping website today and found a most common vulnerability everywhere.
ID = Request ("id")
rs.open "Select * from table where id =" & id, conn, 1, 3
I heard that this program is also quite expensive. Many websites are in use, how do people who don't know how to write programs write such irresponsible code, maybe they start to learn from the book.
