Jump to content

exploit sql injection

Robo

By Robo
in Technical Help

 Share

Recommended Posts

Al Brookbanks Proficient

Al Brookbanks

Posted
Posted

I can't see anything of any relevance or sign of SQL Injection in that file at all. 

 

The following line is interesting though:

/shop/index.php?_a=viewCat'A=0&catId=5

I saw this before but its not an attack. This happened in a past version when a function was taking an incorrect value without checking its integrity. This is fixed in a recent version. 

 

I don't see anything to be concerned about.

Link to comment
Share on other sites
Robo Apprentice

Robo

Posted
  • Author
Posted

thanks

 

well the provider told me the shop was under attack  and send me the log file ... , the shop was not working suddenly thats why i came to them database etc etc problems to many connections...

i have now the ...16 version (had 15) and he has blocked some ip adresses ,  till now it is ok ..

 

i am confident it works out ok 

 

grts

Link to comment
Share on other sites
havenswift-hosting Contributor

havenswift-hosting

Posted
Posted

Shop being "under attack" can mean many things but saying it had an sql injection vulnerability is totally different ! Sending that Apache snapshot as "proof" that your shop was under attack (whatever they mean by that) indicates to me that the hosting company dont have much of a clue what they are talking about !!

Ian

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...