[pLog-svn] php security: snoopy
Ammar Ibrahim
ammar.ibrahim at gmail.com
Wed Jul 5 14:16:55 GMT 2006
What I'm gonna do is to search for $this->_request->getValue and make sure
that the Action has registered validators for every value that is being
exported. This should fix all SQL injection problems.
What do you think?
Ammar
On 7/5/06, Jon Daley <plogworld at jon.limedaley.com> wrote:
>
> Yes, although I assume there are more that we haven't discovered
> yet.
>
> On Wed, 5 Jul 2006, Ammar Ibrahim wrote:
> > Did we fix all the security problems that we know in 1.0.6?
> _______________________________________________
> pLog-svn mailing list
> pLog-svn at devel.lifetype.net
> http://devel.lifetype.net/mailman/listinfo/plog-svn
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http:// devel.lifetype.net/pipermail/plog-svn/attachments/20060705/7f846375/attachment.html
More information about the pLog-svn
mailing list