Welcome Guest, Not a member yet? Register   Sign In
Sql Injections
#1

Hey There ! I Have Built a Codeigniter app and it had several inputs and when i recieved users some sql injections were done , users with 0 stats had lots of point in their account, i didnt used any raw query and used Query BuilderĀ  , is this possible?
Reply
#2

It's not necessarily an SQL injection. It could be a bug in your app. It could be some validations not done correctly.

How do you update those stats? Do you have anything coming from a form or is it all done in the backend? Do you validate inputs with JavaScript or in CodeIgniter or both?
Reply
#3

I checked every code , everything was validated , I am assuming it as SQL injection , is this possible that I didn't used any raw query builder
Reply
#4

It's very unlikely this would be SQL injection. But without seeing any code and without any more information, we can only speculate.
Reply




Theme © iAndrew 2016 - Forum software by © MyBB