Special character causing SQL errors

PHSCDC / itocdc-2015-www

An insecure PHP web app for the Iowa State University 2015 IT Olympics Cyber Defense Competition (ITOCDC)

MIT License

0 stars 1 forks source link

Closed Geekman16 closed 9 years ago

Geekman16 commented 9 years ago

Placing a ;" into text fields causes errors in the sql syntax. Tested on Title, and description for video post

ngiddings commented 9 years ago

This might be fixed with my revision to the SQL queries. We'll have to do some testing to see.

ngiddings commented 9 years ago

On second thought, we should close this so it's more clear what needs done.