Closed eSilverStrike closed 2 years ago
Found a lot of errors in the log which showed someone was trying a SQL injection via our OAuth login like this one below:
Sun 07 Feb 2021 18:09:23 EST - ###.###.###.### - OAuth login failed - there was no consumer available for the service:github);SELECT SLEEP(5)#
This should be double checked.
There wasn't an issue as its not compared in SQL. Did add some additional filtering though.
Found a lot of errors in the log which showed someone was trying a SQL injection via our OAuth login like this one below:
Sun 07 Feb 2021 18:09:23 EST - ###.###.###.### - OAuth login failed - there was no consumer available for the service:github);SELECT SLEEP(5)#
This should be double checked.