phpCollab Community
Discuss everything phpCollab!
The forums are currently in READ-ONLY mode while we upgrade the forums.
Home » Support » General Support » Vulnerable to SQL Injection? (has it been fixed?)
Vulnerable to SQL Injection? [message #9017] Thu, 10 May 2012 04:25 Go to next message
neildaemond is currently offline  neildaemond
Messages: 2
Registered: May 2012
phpCollab guest
I saw this page saying that phpcollab is vulnerable to sql injection:

http://xforce.iss.net/xforce/xfdb/47520

The main description says:

"phpCollab is vulnerable to SQL injection. If magic_quotes_gpc is disabled, a remote attacker could send specially-crafted SQL statements to the login.php script using the loginForm parameter, which could allow the attacker to view, add, modify or delete information in the back-end database."

is this still an issue?

I guess its not that bad if it only happens when magic_quotes_gpc is disabled, right?

Report message to a moderator

Re: Vulnerable to SQL Injection? [message #9018 is a reply to message #9017] Fri, 11 May 2012 03:02 Go to previous messageGo to next message
mindblender is currently offline  mindblender
Messages: 610
Registered: July 2003
Location: AZ
phpCollab contributor
I know there have been some SQL injection fixes implemented, but not sure about that particular one.

Report message to a moderator

Re: Vulnerable to SQL Injection? [message #9020 is a reply to message #9017] Fri, 11 May 2012 03:58 Go to previous message
neildaemond is currently offline  neildaemond
Messages: 2
Registered: May 2012
phpCollab guest
thanks for your response, upon further investigation I read in

http://phpxref.com/xref/phpcollab/docs/changes.txt.source.ht ml

that in phpcollab 1.6, they listed the change:

"No longer dependent with magic_quotes_gpc (The War Against Magic Quotes => http://www.pinkgoblin.com/quotesarticle.php)"

and in my php.ini file I can see:

; Magic quotes are a preprocessing feature of PHP where PHP will attempt to
; escape any character sequences in GET, POST, COOKIE and ENV data which might
; otherwise corrupt data being placed in resources such as databases before
; making that data available to you. Because of character encoding issues and
; non-standard SQL implementations across many databases, it's not currently
; possible for this feature to be 100% accurate. PHP's default behavior is to
; enable the feature. We strongly recommend you use the escaping mechanisms
; designed specifically for the database your using instead of relying on this
; feature. Also note, this feature has been deprecated as of PHP 5.3.0 and is
; scheduled for removal in PHP 6.
; Default Value: On
; Development Value: Off
; Production Value: Off
; http://php.net/magic-quotes-gpc
magic_quotes_gpc = Off


So, one might want to make sure that magic_quotes_gpc is off. if on shared hosting, check out:

http://stackoverflow.com/questions/517008/how-to-turn-off-ma gic-quotes-on-shared-hosting

Report message to a moderator

Previous Topic: xpblue theme
Next Topic: How to integrate PHPCollab 2.5 to drupal 7.14
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Wed May 22 22:06:23 CEST 2013

Total time taken to generate the page: 0.27232 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.3.
Copyright ©2001-2011 FUDforum Bulletin Board Software