27-10-2019, 17:02
Har ikke testet men der skulle være en mulig sql injection her
[/url][url=https://tikitoki.skoletube.dk/timeline/entry/test]https://tikitoki.skoletube.dk/timeline/entry/test
eftersom svaret er
A Database Error Occurred
Error Number: 1054
Unknown column 'test' in 'where clause'
SELECT * from timelines WHERE id = test && userId != 0;
[/url][url=https://tikitoki.skoletube.dk/timeline/entry/test]https://tikitoki.skoletube.dk/timeline/entry/test
eftersom svaret er
A Database Error Occurred
Error Number: 1054
Unknown column 'test' in 'where clause'
SELECT * from timelines WHERE id = test && userId != 0;