|
From: SourceForge.net <no...@so...> - 2003-05-14 20:15:13
|
Bugs item #737873, was opened at 2003-05-14 13:15 Message generated for change (Tracker Item Submitted) made by Item Submitter You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=403611&aid=737873&group_id=31885 Category: DB_SQL Group: 7.2.x Status: Open Resolution: None Priority: 5 Submitted By: Nobody/Anonymous (nobody) Assigned to: Nobody/Anonymous (nobody) Summary: Security problem (unescaped id) in ct_sql Initial Comment: Hello. ct_sql.inc is wrong. You are assuming that $id is always going to be 'safe', and basically it isn't. function ac_store (and others) that take $id in should use addslashes, or the postgres addslashes equivalent. Regards, g0tai ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=403611&aid=737873&group_id=31885 |
