16 comments

[ 2.3 ms ] story [ 36.6 ms ] thread
Good to know their SQL sanitization is working...
At least the government contractors did their SQL correctly!
As a former government contractor...I find this quite surprising. It's hard to find decent government contractors and even then it's usually just a few teams versus a whole company.
Probably not... knowing how that code gets written, the correct table was probably called "tbl_cmmts"
Meh. Needs more cynicism.

Knowing the government, the data from a web form is faxed to an office where someone retypes it into an IBM AS/400 mainframe green-screen by hand, omitting the ');

It should've been named "'; DROP TABLE committees;". Way to fail at SQL injections :)
The bad characters may have been stripped
Little Bobby Tables grew up and started a PAC!
I wish it would work. I can't believe just two people are going to drop $900M on a single election through PACs.
While I'm sure the Koch brothers will spend a large sum, the $900m isn't going to come from just them, that's the total goal of their political network, to be sourced from hundreds or thousands of donors. Their network spent nearly $400m during the 2012 elections.
Someone should create a <script>alert('PAC')</script>