<<< Date Index >>>     <<< Thread Index >>>

Re: Posible security bug in phpMyWebhosting



Hallo Daniel,

begin  * Daniel Souza schrieb [20-08-04 02:01]:
> 
> may your server is configured with magic_quotes disabled, so, the " is not
> slashed and we have a basic sql injection. Im not sure because I have not
> seen the source codes to say that, but it's what looks like. Is there a
> addslashes in the code ?

In Debian magic_quotes = On is standard.

I should add addslashes in the code. Thank you!

end  

Gruss Udo
-- 
Ohne Signatur!