Results 1 to 3 of 3

Thread: phpBB 2.06 search.php SQL injection it seems not succuess

  1. December 21st, 2003, 05:39 AM #1
    deadforg
    deadforg is offline
    Banned
    Join Date
    May 2003
    Posts
    13

    phpBB 2.06 search.php SQL injection it seems not succuess

    Hello everybody,set the magic_quotes_gpc = ON in php.ini ,SQL injection it seems not succuess.
    what do you think.?
    Reply With Quote Reply With Quote
  2. December 21st, 2003, 08:20 AM #2
    skiddieleet
    skiddieleet is offline
    Elite Hacker
    Join Date
    Mar 2003
    Posts
    1,407
    I have to say that I have no clue what the thing you put does, but I find the fix provided by phpbb is quite quick and painless. I would go with theirs because they know what they are doing, and what you put might have side effects.
    http://www.skiddieleet.org/
    http://www.skiddieleet.org/projects.php
    Reply With Quote Reply With Quote
  3. December 21st, 2003, 01:44 PM #3
    slarty
    slarty is offline
    Senior Member
    Join Date
    Jan 2002
    Posts
    1,207
    magic_quotes is evil, as I've mentioned before

    NEVER EVER turn magic_quotes on - it may prevent security problems in some cases, but it causes A LOT of data corruption in others by putting loads of escaping in unnecessary places.

    Read my previous thread on it

    http://www.antionline.com/showthread...585#post612665

    Slarty
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules