Fiesta Fan Forums - View Single Post

**ThievingSix** · 06-02-2008, 05:08 PM

I hate to say this, but outspark is easily sql injectable with the spark cash login forms.

For anyone who doesn't know this sql injecting can edit the Database with all your information in an indirect way. For example the person could give himself/everyone 10k sparkcash. Or delete everyone's character.

As far as I know there is only one sql injectable way right now, but I don't think anyone knows about it.

06-02-2008, 05:08 PM	#4
ThievingSix Apeopex/Millenium Tournaments Won: 4 In-Game Name: Thieving Current Level: 51 Server: Epith Posts: 769	I hate to say this, but outspark is easily sql injectable with the spark cash login forms. For anyone who doesn't know this sql injecting can edit the Database with all your information in an indirect way. For example the person could give himself/everyone 10k sparkcash. Or delete everyone's character. As far as I know there is only one sql injectable way right now, but I don't think anyone knows about it. __________________ "Do or do not, there is no try." - Yoda "Put off today what you can do tomorrow." - Anon "The secret to creativity is knowing how to hide your sources." - Einstein "Life is a long lesson in humility." - James M. Barrie Epith Thieving(Hawk Archer) - 51 ThievingSix(Wiz Mage) - 39