Security Vulnerability

Blah

Quote · 26 Jun 2010

I don't see any form of a vulnerability. The database table doesn't appear to actually drop, and the debug output is only displayed to the administrator.

BoonEx Certified Host: Zarconia.net - Fully Supported Shared and Dedicated for Dolphin
Quote · 26 Jun 2010

Blah

Hello yes there possible myql injections, but you can't drop the some of tables.

ticket was created and finished : http://www.boonex.com/trac/dolphin//ticket/2066#preview

PS: If possible do not write me personally, please try to ask on the forum first
Quote · 26 Jun 2010

Haven't perfected the injection yet.

I don't see any form of a vulnerability. The database table doesn't appear to actually drop, and the debug output is only displayed to the administrator.

Quote · 26 Jun 2010

Thanks for the quick fix.

Blah

Hello yes there possible myql injections, but you can't drop the some of tables.

ticket was created and finished : http://www.boonex.com/trac/dolphin//ticket/2066#preview

Quote · 26 Jun 2010
 
 
Below is the legacy version of the Boonex site, maintained for Dolphin.Pro 7.x support.
The new Dolphin solution is powered by UNA Community Management System.