BugTraq
Re: Posible security bug in phpMyWebhosting Aug 19 2004 08:07AM
Udo Müller (info cs-ol de) (1 replies)
Re: Posible security bug in phpMyWebhosting Aug 20 2004 05:01AM
Daniel Souza (daniel souza tuxtecnologia com br) (1 replies)
Re: Posible security bug in phpMyWebhosting Aug 20 2004 07:31AM
Udo Mueller (info cs-ol de) (1 replies)
Hallo Daniel,

begin * Daniel Souza schrieb [20-08-04 02:01]:
>
> may your server is configured with magic_quotes disabled, so, the " is not
> slashed and we have a basic sql injection. Im not sure because I have not
> seen the source codes to say that, but it's what looks like. Is there a
> addslashes in the code ?

In Debian magic_quotes = On is standard.

I should add addslashes in the code. Thank you!

end

Gruss Udo
--
Ohne Signatur!

[ reply ]
Re: Posible security bug in phpMyWebhosting Sep 20 2004 12:42PM
Udo Mueller (info cs-ol de)


 

Privacy Statement
Copyright 2010, SecurityFocus