by comperr on Thu Apr 24, 2008 8:20 pm
([msg=1243]see Extended Basic 7[/msg])
<pre>
<?php
if (!empty($_POST['data']))
{
$data = mysql_real_escape_string($_POST['data']);
mysql_query("INSERT INTO tbl_data (data) VALUES '$data'");
}
?>
<form name="grezvahfvfnjuvavatovgpu" action="<?=$_SERVER['PHP_SELF']?>" method="get">
<input type="textbox" name="data" />
<input type="submit" />
</form>
</pre>
by TheMindRapist on Thu Apr 24, 2008 8:25 pm
([msg=1245]see Re: Extended Basic 7[/msg])
by Nyteblade on Fri Apr 25, 2008 8:21 am
([msg=1273]see Re: Extended Basic 7[/msg])
LOL 
by satanswrath on Sun Jun 08, 2008 10:24 am
([msg=4271]see Re: Extended Basic 7[/msg])
by nermd on Wed Jun 11, 2008 1:52 pm
([msg=4524]see Re: Extended Basic 7[/msg])
by I-MrKnox-I on Sun Jun 15, 2008 6:27 am
([msg=4869]see Re: Extended Basic 7[/msg])
by comperr on Mon Jun 16, 2008 8:57 pm
([msg=5010]see Re: Extended Basic 7[/msg])
by Mindzai on Wed Jun 18, 2008 3:17 pm
([msg=5175]see Re: Extended Basic 7[/msg])
comperr wrote:Look for a BUG and a VULN. There are TWO problems!
by pitagora on Thu Jun 19, 2008 4:01 am
([msg=5257]see Re: Extended Basic 7[/msg])
by sharpskater69 on Tue Jun 24, 2008 5:48 pm
([msg=5701]see Re: Extended Basic 7[/msg])
I-MrKnox-I, another thread wrote:Posible spoiler:
There are many ways to sanitize [Removed] (assuming you all know this is the vuln) as you might know by now. However, most of the ways will sanitize a lot of "innocent" chars too. We do not want this to happen. Luckily there is an alternative which is very alike, but only sanitizes the most "dangerous" chars like '<', '>' and quotes. This is what we are looking for.
Users browsing this forum: No registered users and 0 guests