New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Critical] SQL Injections #52
Comments
Fixed |
I don't think I need to change anything in these files because it directly interact with MOFH System and then it interact with database in case of any error the mofh system will return an error by its self |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This issue has been disclosed privately to the author (on Jan 8th) but it's taking too long to be fixed.
All the queries in this project are vulnerable to SQL injection.
A much more sophisticated injection may be crafted to reveal sensitive information, or a much simpler one to drop the whole database.
Affected files: All files that accept user input in the form of POST or GET requests and perform SQL queries.
The text was updated successfully, but these errors were encountered: