StarGateWars Forums

These are the forums for the GateWa.rs family of text-based space-centred PBBGs
https://talk.gatewa.rs/

Bank - SQL "bug"

https://talk.gatewa.rs/viewtopic.php?t=97882

Page 1 of 1

Bank - SQL "bug"

Posted: Thu Nov 29, 2007 4:41 am
by Einstein
When you enter anything other than numbers on the bank it shows this

Query2 failed: update `UserDetails` set gold=gold-,bank=bank+0, bankCount=bankCount+1 WHERE ID='49443' #/bank2.phpYou have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'bank=bank+0, bankCount=bankCount+1 WHERE ID='49443' #/bank2.php' at line 1
Warning: Cannot modify header information - headers already sent by (output started at /game/stargame/stargatewars.com/vsys.php:1056) in /game/stargame/stargatewars.com/bank2.php on line 73


not really a BUG but the value should be tested first and you should never send the sql msg back to the user... half way to being haxed is intel and your giving some there.

Re: Bank - SQL "bug"

Posted: Thu Nov 29, 2007 8:34 am
by Blackburn
I hope people wont be able to exploit this bug.

Kinda weir bug tho.

Re: Bank - SQL "bug"

Posted: Thu Nov 29, 2007 10:35 pm
by Scott
This bug is not exploitable though it does reveal enough about the structure of the database to be used if another section of code is found to be exploitable.

funciton posing($inp){

$inp = intval($inp);
if($inp < 0){
$inp = $inp*-1;
}

retrun $inp;

}
All times are UTC-08:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited