PhpDig.net - View Single Post

barrett_lyon · 10-24-2003, 12:40 PM

I have yet to test it, but I am pretty sure anyone can inject mysql queries into the search field. Sorry I have not researched the code on my own, I am hoping someone else has already done that effort.

Also, I have wrote some code that allows regex searches. Is there an easy way to submit a diff?

10-24-2003, 12:40 PM	#8
barrett_lyon Green Mole Join Date: Oct 2003 Location: Los Angeles Posts: 1	mysql injection possibility I have yet to test it, but I am pretty sure anyone can inject mysql queries into the search field. Sorry I have not researched the code on my own, I am hoping someone else has already done that effort. Also, I have wrote some code that allows regex searches. Is there an easy way to submit a diff?