Urgent help needed - SQL Injections

[Djkanna]

Thanks for totally confusing me >.< ha

You're welcome...I think.

Jesus, now I'm confused, feck it back to my hidey hole.

[Guest]

You're welcome...I think.

Jesus, now I'm confused, feck it back to my hidey hole.

You said something about a crystal market, and I have no idea how that fits in with anything anymore

[jcvenom]

Thanks for totally confusing me >.< ha

did you try the xss worm exploit

Edited July 3, 2013 by jcvenom

[Guest]

did you try the xss work exploit

[sniko]

You said something about a crystal market, and I have no idea how that fits in with anything anymore

You're using the wrong meme.

Guest was correct.

[jcvenom]

php strip_tags fix the xss worm exploit

[Djkanna]

You said something about a crystal market, and I have no idea how that fits in with anything anymore

Wrong meme for the context but hey you tried.

The code JC provided was a very butchered ( no offense, well actually I don't care ) attempt at a fix for the crystal market 'exploit'.

Which has been fixed in previous releases, and has nothing to do with the problem of this thread.

It was originally perceived to be the crystal market that was causing issues, due to the first post.

However the OP amended that by saying those attempts did not succeed.

After which, it was discovered that it is more likely that it's a problem with the "lax security" when it comes to images.

In which case the code JC posted is irrelevant at best.

[Guest]

Wrong meme for the context but hey you tried.

The code JC provided was a very butchered ( no offense, well actually I don't care ) attempt at a fix for the crystal market 'exploit'.

Which has been fixed in previous releases, and has nothing to do with the problem of this thread.

It was originally perceived to be the crystal market that was causing issues, due to the first post.

However the OP amended that by saying those attempts did not succeed.

After which, it was discovered that it is more likely that it's a problem with the "lax security" when it comes to images.

In which case the code JC posted is irrelevant at best.

The meme was perfectly acceptable, I cried because i was confused, but now that I have to explain that it renders it pointless :'(.

Moral of the story is fix the bbcode for the forums using.....?

[sniko]

Just read your post, was a good find :), what fix did you implement, are you willing to share it?

I'll check up in OPs site in a few days, and write a blog post regarding what we did.

[Guest]

I'll check up in OPs site in a few days, and write a blog post regarding what we did.

Thankyou sir.

[sniko]

The meme was perfectly acceptable, I cried because i was confused, but now that I have to explain that it renders it pointless :'(.

Moral of the story is fix the bbcode for the forums using.....?

....still the wrong meme. Those are tears of happiness. Browse reddit ;) you'll soon discover.

The img bbcode tag was being exploited. I'm writing up a document of safeguards for this type of exploit, and it should be published when the next article (when I check back on OP site) is out.

[Djkanna]

The meme was perfectly acceptable, I cried because i was confused, but now that I have to explain that it renders it pointless :'(.

Moral of the story is fix the bbcode for the forums using.....?

Did you cry tears of joy, or awe?

More relevant meme

[Guest]

I typed in cry meme in google and that came up,in my head it was appropriate haha, I don't use reddit, don't understand it to be honest.

[Dominion]

Out of curiosity how up to date was the version he was using?

[sniko]

Out of curiosity how up to date was the version he was using?

I'm unsure, however, one of the codes he paste binned had the raven copyright on it, if that helps answer your question.

[rockwood]

php strip_tags fix the xss worm exploit

strip_tags and htmlspecialchars, i wanna add one more

[jcvenom]

strip_tags and htmlspecialchars, i wanna add one more

??? what do you mean