Welcome Guest, Not a member yet? Register   Sign In
oci8 driver string escaping not working
#1

Hi Guys,

I am using CodeIgniter 2.x connected in Oracle Database. Recently, I just found out the when I tried to put single quote in the user-supplied input to check for sqli vulnerability (login page in my case). There was a database error. I was able to bypass the login using a simple sqli code the 'or 1=1;-- .

I changed the database config to postgre and mysql and the string escaping worked.

So I checked the core file inside the <my_application>/system/database/drivers/oci8/oci8_driver.php and checked the escape_str function. I seems that the bug is on the remove_invisible_characters() function used. I tried to change it in pg_escape_string just to test if the escaping will work and the escaping really worked.
Reply




Theme © iAndrew 2016 - Forum software by © MyBB