Support » Requests and Feedback » Possible Blind SQL Injection Issues

  • It appears that using permalinks there could be a blind sql injection issue.

    ?s=+and+1%3D1
    ?s=+and+1%3D0

    Put the two strings behind your URL. The two pages should return to the same page, we are just passing 1=1(true) and 1=0(false) at the end, but the pages should respond in a similar fashion for each, yet we are getting completely different pages for each request.

    A concern?

Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
  • The topic ‘Possible Blind SQL Injection Issues’ is closed to new replies.