Tcl70
25.08.2007, 15:07
как можно експлоитировать эту багу ?
The 'id' parameter in "get()" function is not checked against sql injections :
File kernel/group.php, Line 94 :
:: function &get($id)
:: {
:: $group = false;
:: if (intval($id) > 0) {
** $sql = 'SELECT * FROM '.$this->db->prefix('groups').' WHERE groupid='.$id;
The 'id' parameter in "get()" function is not checked against sql injections :
File kernel/group.php, Line 94 :
:: function &get($id)
:: {
:: $group = false;
:: if (intval($id) > 0) {
** $sql = 'SELECT * FROM '.$this->db->prefix('groups').' WHERE groupid='.$id;