CX SQL_Injection @ website/comments/preview_comment.php [master]

[vish07]

SQL_Injection issue exists @ website/comments/preview_comment.php in branch master

Method <?php at line 1 of website\comments\preview_comment.php gets user input from the _POST element. This element’s value then flows through the code without being properly sanitized or validated, and is eventually used in a database query in method get_picture at line 110 of website\include\pictures.php. This may enable an SQL Injection attack.

Severity: High

CWE:89

Vulnerability details and guidance

Checkmarx

Lines: 18 24

---

Code (Line #18):

   if (!($previewid = Comments::add_preview($_POST['text'], $cur['id'], $_POST['picid'])))

---

Code (Line #24):

      if (!($pic = Pictures::get_picture($_POST['picid'])))

---

[vish07]

Issue still exists.

[vish07]

Issue still exists.