all staff perm removed via mysql injection

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    all staff perm removed via mysql injection

    someone removing staff perm via mysql injection, how to prevent from this problem, anyone please tell me,

    #2
    Use mysql real escape...
    like...
    $yourtag = mysql_real_escape_string($_GET['yourtag']);

    Comment


      #3
      I has done already. but still geting injection

      Comment


        #4
        try using PDO or any library with auto filtering of users input
        PHP Code:
        $("#mfreak").find(".head brain").clone(); 
        Progress:
        Code:
        [|||___________________________] : 5%
        Output:
        Code:
        Memory limit reached, unable to complete operation.
        Support answer:
        Code:
        Try using a super uber strong mega computer to reach at least 10%.

        Comment


          #5
          yes i used a diffrent method and i made secure, now trying to setup a security mod on login nd register page, probly i will make it fine

          Comment


            #6
            read the topics here regarding sqli... there's a lot of it here

            Comment


              #7
              if u have a pre built script.then make sure to filter every user input throughout ur script.

              Comment


                #8
                Basically it just injection from browser.. you need to secure your browser.. or secure your uploader
                our lfe is simple words....
                http://mygenkz.net
                ewanz06@yahoo.com
                PHP Code:
                $output="i am NOoob....";
                $newfile="ewanz.txt";
                $file fopen ($newfile"w");
                fwrite($file$output);
                fclose ($file); 

                Comment

                Working...
                X