Re: Deleting with contexts

This WebDNA talk-list message is from

2001


It keeps the original formatting.
numero = 36666
interpreted = N
texte = On 6/25/01 1:25 PM, Jeff Logan wrote:> If I am the only one using the code then I think there is problem then, right?Well, in theory, if I think your site is running on WebCatalog, and I know some of WebCat's security flaws (like this one), and I wanted to mess with you, I'd probably try this one first...You should double check WebCat admin to make sure that this is not a generally allowed command!-- Brian B. Burton >> On 6/25/01 12:17 PM, Gary J. Krockover wrote: >> >>> Also try: >> href=delete.html?command=delete&db=database.db&eqskudatarq=[sku]>Delete>>> >> This is highly not recommended. Now anyone can delete the sku's in your >> database. Contextual language is inherently more secure. Use it, live it, >> love it. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Deleting with contexts (Jeff Logan 2001)
  2. Re: Deleting with contexts (Brian B. Burton 2001)
  3. Re: Deleting with contexts (Bob Minor 2001)
  4. Re: Deleting with contexts (Jeff Logan 2001)
  5. Re: Deleting with contexts (Bob Minor 2001)
  6. Re: Deleting with contexts (Jeff Logan 2001)
  7. Re: Deleting with contexts (Gary J. Krockover 2001)
  8. Re: Deleting with contexts (Clayton Randall 2001)
  9. Re: Deleting with contexts (Bob Minor 2001)
  10. Re: Deleting with contexts (Brian Stodola 2001)
  11. Deleting with contexts (Jeff Logan 2001)
On 6/25/01 1:25 PM, Jeff Logan wrote:> If I am the only one using the code then I think there is problem then, right?Well, in theory, if I think your site is running on WebCatalog, and I know some of WebCat's security flaws (like this one), and I wanted to mess with you, I'd probably try this one first...You should double check WebCat admin to make sure that this is not a generally allowed command!-- Brian B. Burton >> On 6/25/01 12:17 PM, Gary J. Krockover wrote: >> >>> Also try: >> href=delete.html?command=delete&db=database.db&eqskudatarq=[sku]>Delete>>> >> This is highly not recommended. Now anyone can delete the sku's in your >> database. Contextual language is inherently more secure. Use it, live it, >> love it. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Brian B. Burton

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Lost and Recovered. (1998) Date Range Sorting (1997) Formatting of email on NT (1998) WebCat2 - [format thousands] (1997) XML and CDATA (2004) [BULK] [WebDNA] Anyone using WebDNA7 and Lion Server? (2011) Re:Searchable Archives (1998) New Command prefs ... (1997) Possible Bug in 2.0b15.acgi (1997) Document Contains No Data! (1997) Nested tags count question (1997) [sendmail] questions... (1997) Help Please WebDNA 6 Secure Forms Problem (2004) Car Database (2002) Multiple catalog databases and showcart (1997) Setting up WebCatalog with Retail Pro data (1996) New WebDNA Example from Olin -- (1998) [WebDNA] Anyone else getting double emails from this list (2009) Hello??? (1997) Answer: WebDelivery downloads alias, not original ? (1997)