danno
Posts: 15
|
| Posted: 07/10/2010, 7:39 AM |
|
Is there a document that discusses the methods CCS generated db-access code protects against SqL Injection? I have read that CCS implements methods against this, but these are not documented.
|
 |
 |
melvyn
Posts: 333
|
| Posted: 07/10/2010, 9:31 AM |
|
Search for $db->toSQL()
I suffered a sucessful SQL Injection attack some weeks ago. Requested to support guys and they told "that's impossible, check your code".
kudos for yes software!
_________________
Melvyn Perez
Puro Codigo
http://purocodigo.com |
|
|
|
rho
Posts: 85
|
| Posted: 07/10/2010, 10:24 AM |
|
Melvyn,
Can you provide any details about the attack?
Rob
|
|
|
|
datadoit
|
| Posted: 07/11/2010, 5:51 AM |
|
Some things are better left undocumented.
But, I think in a nutshell the ToSQL() function will check the data type
to make sure it matches what the database expects.
|
|
|
|
melvyn
Posts: 333
|
| Posted: 09/06/2010, 6:25 PM |
|
@rho:
The site had an order form where customer introduced their data: name, address, shipping name, shipping address, and more.
We noticed the server was on heave load. Checked and found millions of request from Russia, Romania and another countries.
Checked them. When we entered the same address as the hacker we got the full customer details from the database. The normal addres was someting like http://example.com/order.php?product_id=17 which they changed to something like http://example.com/order.php?product_id=17+AND+1=2+UNIO...,BillingCountry................
Well, the fact is: a dependant listbox take the product_id and search for products ir order to populate.
Support told that's impossible, so I take their word.
Sorry for the delay, I just read this today.
_________________
Melvyn Perez
Puro Codigo
http://purocodigo.com |
|
|
|
|
