Jump to content
MakeWebGames

Money sql injection


Criminal

Recommended Posts

Guest Anonymous

Re: Money sql injection

I little more information could be useful here ...

1. PHP version

2. MySQL version

3. Source platform .. DBS/MCcodes I assume?

4. Have you access to the web server logs (httpd logs)

5. URL of said game?

Link to comment
Share on other sites

Re: Money sql injection

 

.....I doubt someone is trying anything wiht your website. :)

 

(SNIPPED)

Why you say that? I've seen a ton of folks come into cove of pirates and try to cheat the game, many of them using, or attempting to use mysql injection.

Unfortunately, an answer to how to stop people from cheating your game would require some diagnosing. Once would need to know what they are exploiting before that can be fixed. You could find a sorts of code for validating input/protecting against sql injection, but if there are 100 places in you code that could potentially be open to such attacks, are you going to go through each one?

You should of course go through them all, but I suspect you are either not a coder, or you are "eh" at coding and thus prolly don't have the necessary skills to find/fix the problem on your won.

Therefore, my advice is to hire someone to fix it for you.

Link to comment
Share on other sites

Re: Money sql injection

 

.....I doubt someone is trying anything wiht your website. :)

 

(SNIPPED)

Why you say that? I've seen a ton of folks come into cove of pirates and try to cheat the game, many of them using, or attempting to use mysql injection.

Unfortunately, an answer to how to stop people from cheating your game would require some diagnosing. Once would need to know what they are exploiting before that can be fixed. You could find a sorts of code for validating input/protecting against sql injection, but if there are 100 places in you code that could potentially be open to such attacks, are you going to go through each one?

You should of course go through them all, but I suspect you are either not a coder, or you are "eh" at coding and thus prolly don't have the necessary skills to find/fix the problem on your won.

Therefore, my advice is to hire someone to fix it for you.

 

Sure, why not dive into securing you game against sql inject and such.

But by my post, I was not ruling out the possibility of a vulnerability being abused by someone.

A main problem with programmers these days are that they are so focused on securing their websites against any type of vulnerability that could be exploited by someone,they tend to miss the most common of mistakes they make while structuring the database or building their scripts.

But I agree with you, Dragon_killer123 should get a professional to inspect the code thoroughly.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...