• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
oci8 driver string escaping not working

#1
Hi Guys,

I am using CodeIgniter 2.x connected in Oracle Database. Recently, I just found out the when I tried to put single quote in the user-supplied input to check for sqli vulnerability (login page in my case). There was a database error. I was able to bypass the login using a simple sqli code the 'or 1=1;-- .

I changed the database config to postgre and mysql and the string escaping worked.

So I checked the core file inside the <my_application>/system/database/drivers/oci8/oci8_driver.php and checked the escape_str function. I seems that the bug is on the remove_invisible_characters() function used. I tried to change it in pg_escape_string just to test if the escaping will work and the escaping really worked.
Reply


Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2020 MyBB Group.