Search found 2 matches

by kross
Mon Feb 13, 2012 7:41 pm
Forum: General Discussion
Topic: SQL Injection Attack
Replies: 7
Views: 3814

Re: SQL Injection Attack

I completely understand your concerns and i agree that it wouldn't make much sense to publish an current version of the old code. When i talked about open-sourcing at Github i was referring to a future, rewritten code as mentioned by Coco. When it comes to a new version i don't see any drawbacks of ...
by kross
Mon Feb 13, 2012 5:28 am
Forum: General Discussion
Topic: SQL Injection Attack
Replies: 7
Views: 3814

Re: SQL Injection Attack

I was using thetvdb with XBMC some time ago and just came across recently and noticed the SQL flaws too. Seems you lowered the risk a little bit by some kind of basic intrusion detection, hehe. Of course an IDS shouldn't be the main security concept, but as you have stated the current code is hard t...