PHP :: Bug #56358 :: SQL injection in URL

Bug #56358	SQL injection in URL
Submitted:	2005-03-25 13:36 UTC	Modified:	2005-03-28 14:53 UTC
From:	advantis at gmx dot net	Assigned:	mj (profile)
Status:	Closed	Package:	PECL website (PECL)
PHP Version:	Irrelevant	OS:
Private report:	No	CVE-ID:	None

View Developer Edit

[2005-03-25 13:36 UTC] advantis at gmx dot net

Description:
------------
The URL Query String is not properly checked.

Reproduce code:
---------------
http://pecl.php.net/package-stats.php?cid=12%20or%201=1&pid=&rid=

Expected result:
----------------
Error

Actual result:
--------------
Puts the modified parameter as is in the WHERE clause which makes where query return the entire database.

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2005-03-28 14:53 UTC] mj@php.net

This bug has been fixed in CVS.

In case this was a documentation problem, the fix will show up at the
end of next Sunday (CET) on pear.php.net.

In case this was a pear.php.net website problem, the change will show
up on the website in short time.
 
Thank you for the report, and for helping us make PEAR better.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2026 The PHP Group All rights reserved.	Last updated: Thu Jan 01 06:00:01 2026 UTC