Discover Habbo's history
Treat yourself with a Secret Santa gift.... of a random Wiki page for you to start exploring Habbo's history!
Happy holidays!
Celebrate with us at Habbox on the hotel, on our Forum and right here!
Join Habbox!
One of us! One of us! Click here to see the roles you could take as part of the Habbox community!


Results 1 to 5 of 5

Thread: SQL injecting

  1. 05-07-2008, 10:24 PM #1
    Decode's Avatar
    Decode
    Decode is offline Habbox Elite
    Join Date
    Dec 2006
    Posts
    3,970
    Tokens
    0

    Latest Awards:

    2500 Posts
    Total Awards: 1

    Default SQL injecting

    How can it happen, i dont want my site to be hacked +rep if somone explains or gives me a link.
    Lets set the stage on fire, and hollywood will be jealous.
    Reply With Quote Reply With Quote
  2. 05-07-2008, 10:27 PM #2
    Dentafrice
    Dentafrice is offline Habbox Master
    Join Date
    Mar 2008
    Posts
    5,108
    Tokens
    3,780

    Latest Awards:

    16 Year Milestone Ukraine Donator 5000 Posts
    Total Awards: 4

    Default

    http://www.unixwiz.net/techtips/sql-injection.html
    http://www.securiteam.com/securityre...DP0N1P76E.html

    Those are two great articles.
    Reply With Quote Reply With Quote
  3. 05-07-2008, 10:32 PM #3
    Decode's Avatar
    Decode
    Decode is offline Habbox Elite
    Join Date
    Dec 2006
    Posts
    3,970
    Tokens
    0

    Latest Awards:

    2500 Posts
    Total Awards: 1

    Default

    Thanks
    Lets set the stage on fire, and hollywood will be jealous.
    Reply With Quote Reply With Quote
  4. 07-07-2008, 03:28 PM #4
    Decode's Avatar
    Decode
    Decode is offline Habbox Elite
    Join Date
    Dec 2006
    Posts
    3,970
    Tokens
    0

    Latest Awards:

    2500 Posts
    Total Awards: 1

    Default

    K opening this again, ive made a function to remove bad characters from my string, I've got these on the list so far, is there any I've mised;

    & - gets replaced with &
    OR - with O<i></i>R
    ' - removed
    " - &quot;
    > - &lt;
    < - $gt;

    Would that be enough to stop injecting?
    Lets set the stage on fire, and hollywood will be jealous.
    Reply With Quote Reply With Quote
  5. 07-07-2008, 05:02 PM #5
    Agnostic Bear's Avatar
    Agnostic Bear
    Agnostic Bear is offline Habbox Elite
    Join Date
    Oct 2006
    Location
    Peterborough, UK
    Posts
    3,855
    Tokens
    216

    Latest Awards:

    2500 Posts Happy New Year (2016)
    Total Awards: 2

    Default

    Quote Originally Posted by Tom743 View Post
    K opening this again, ive made a function to remove bad characters from my string, I've got these on the list so far, is there any I've mised;

    & - gets replaced with &amp;
    OR - with O<i></i>R
    ' - removed
    " - &quot;
    > - &lt;
    < - $gt;

    Would that be enough to stop injecting?
    htmlentities( $string, ENT_QUOTES ); will be fine. (as in, just that)


    visit my internet web site on the internet
    http://dong.engineer/
    it is just videos by bill wurtz videos you have been warned
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules