Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
basior4908y@tisaconundrum I don't think so. In C, strings are created with double quotes, single quotes are for characters. Here we have: "concat" command and single quotes for strings, so it smells like some kind of SQL.
-
What's interesting is it looks right on the receipt. The issue seems to be they entered the data in a format the receipt code could handle but not the self scanner.
I'm betting "father's day card" was entered in the system WAY before these self scanners ever existed and this wasn't tested. -
MyZeus628yI really wonder with that logic how hard it would be to encode a SQL command into a bar code and see if you could do SQL Injection. Nice little hobby project for those of you who live near target.
-
@MyZeus while I like your thought process, that wouldn't be possible to do as the Barcode is only a number to be read.
-
MyZeus628y@tisaconundrum What about QR Codes? Those can even store links. Can we not encode text and symbols into certain types of bar codes?
Related Rants
Well someone messed up.
undefined
concat