GitHub

[Bug]: Crash in dynamic sql using sql_variant parameter

There is a crash when using dynamic sql with sql_variant parameters on the second execution of the dynamic SQL in a batch. exec sp_executesql N'select @P union select @P', N'@P sql_variant', 1; exec ...
Redmond Magazine

SQL Server 2025 Brings AI-Powered Semantic Search to Local and Cloud Data

A new SQL Server 2025 feature lets organizations run vector-based semantic searches on their own data, connecting to local or cloud-hosted AI models without relying on massive general-purpose LLMs. I ...
IEEE

Research of SQL injection attack and prevention technology

Abstract: SQL injection attack is one of the most serious security vulnerabilities in Web application system, most of these vulnerabilities are caused by lack of input validation and SQL parameters ...
GitHub

How to fill in parameters with Mybatis dynamic SQL through the Mybatis interceptor

encountered a problem using mybatis dynamic SQL. The mybatis interceptor I wrote couldn't obtain the parameters for value passing for data filling, and the invoice. getArgs() [1] parameter layer ...
IEEE

Summary of Combinatorial Methods for Dynamic Gray-Box SQL Injection Testing

Abstract: In a recent work [1], we present an extended and enhanced gray-box combinatorial security testing methodology for SQL injection vulnerabilities in web applications. It proposes novel attack ...
Infosecurity-magazine.com

How to Backup and Restore Database in SQL Server

In SQL Server, the database can be stored in different files and filegroups. If your database is small (100 MB or less), you do not need to worry too much about files and filegroups. But if you have a ...