1 comment
Comment actions Permalink

Hi Arthur,

Specifically in that position (inject under ANY circumstances) -- No.

But it can be done if the string there will be recognized as SQL command. You can alter existing / add your own injection rule in Settings | Language Injections.

If you can provide some code example I may give more definite answer.


Please sign in to leave a comment.