Occasional Contributor
Blind SQL injection (confirmed)

I did a search on my site and get the following


Blind SQL Injection (confirmed)..


http://www.mysite.com/xxx/xxx/Query.aspx (Post) _ EVENTTARGET=&...... (why I can't copy it from webinspect??)


What can I suggest to my developer ?


Also there is an option which can send to "SQL injector" ... will if help to further identify the problem and


get all the data from there?


 


Thanks


Danny