Hello
We have an hotspot pro install working fine but since a couple of days some people try to hack it by directly adding parameters/words to the main hotspots page.
This provokes an sql error for now but we would like to fix it before it could give access to something else ?
To explain, the main map is at https://activ-ha.com/c/ and any correct address would be https://activ-ha.com/c/#something.
however attackers try to access https://activ-ha.com/c/somethingelse which gives a 1064 sql error :
You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near ') AND type_alias = 'com_hotspots.hotspot'' at line 3
Can you let me know how to solve this ?
Thanks
Jean
-
Jean Machuron
-
- Bug report
- Thursday, 29 August 2019
- Subscribe via email
There are %s replies to this question. If you want to see them you need a valid subscription.
If you have a valid subscription, please login now.
Visit store now
If you have a valid subscription, please login now.
Visit store now
Last questions
How do I access custom fields after I have created them?...
0 Replies
Posted on Wednesday, 24 April 2024
- #custom fields
Hallo
ich habe eine kleine Frage: wo kann ich einstellen, dass Google die Seite...
0 Replies
Posted on Wednesday, 24 April 2024
Hello.
1) I have a multilingual website (3 languages). If someone added a comme...
1 Replies
Posted on Saturday, 06 April 2024
Hi!
I saw this in the promo, but I can't find how to set it up.
https://compo...
0 Replies
Posted on Monday, 22 April 2024
- #style
- #Categories
Working on getting this set up...
https://eastend2024.joepolecheck.com/rumma...
3 Replies
Posted on Wednesday, 17 April 2024
