Sql Injections |
Hey There ! I Have Built a Codeigniter app and it had several inputs and when i recieved users some sql injections were done , users with 0 stats had lots of point in their account, i didnt used any raw query and used Query BuilderĀ , is this possible?
It's not necessarily an SQL injection. It could be a bug in your app. It could be some validations not done correctly.
How do you update those stats? Do you have anything coming from a form or is it all done in the backend? Do you validate inputs with JavaScript or in CodeIgniter or both?
I checked every code , everything was validated , I am assuming it as SQL injection , is this possible that I didn't used any raw query builder
It's very unlikely this would be SQL injection. But without seeing any code and without any more information, we can only speculate.
|
Welcome Guest, Not a member yet? Register Sign In |