Support => Troubles & Questions => Topic started by: auric on May 28, 2011, 14:40:08
Title: [minor] SQL Injection possible when creating categories!
Post by: auric on May 28, 2011, 14:40:08
When creating a new category, enter a name with a ' (quote) in it and save it. It won't appear in the list, but Locus will generate an error log which gives away some nice SQL statements :twisted:
Title: Re: [minor] SQL Injection possible when creating categories!
Post by: Menion on May 28, 2011, 18:41:30