SQL Injection Vulnerability
Hej Eksperter.Jeg har lavet et Auto Database System til salg af biler. Nu har jeg så, til min store forbløffelse, fundet en side der beskriver at der er SQL Injection Vulnerability i en af mine koder.
Siden jeg fandt det på er her: http://www.securelist.com/en/advisories/43235
Er her en venlig sjæl der kan/vil hjælpe mig med at få koden skrevet på en sådan måde at der ikke længere er sikkerhedsbrist i ?
Her følger koden til search.php:
$result = dbquery("SELECT * FROM ".DB_ADS." WHERE car_model like '%".$_POST['SEARCHSTRING']."%'");
$rows = dbrows($result);
if ($rows != 0) {
opentable($locale['ads007']);
echo "<table cellpadding='2' cellspacing='2' width='100%'>\n<tr>\n";
echo "<td class='tbl-border tbl2' width='47%' valign='top'><b><u>".$locale['ads202']."</u></b></td>\n";
echo "<td class='tbl-border tbl2' width='12%' valign='top'><b><u>".$locale['ads203']."</u></b></td>\n";
echo "<td class='tbl-border tbl2' width='14%' valign='top'><b><u>".$locale['ads210']."</u></b></td>\n";
echo "<td class='tbl-border tbl2' width='12%' valign='top'><b><u>".$locale['ads211']."</u></b></td>\n";
echo "<td class='tbl-border tbl2' width='15%' valign='top'><b><u>".$locale['ads212']."</u></b></td>\n";
echo "</tr>\n</table>\n";
while ($data = dbarray($result)) {
echo "<table cellpadding='2' cellspacing='2' width='100%'>\n<tr>\n";
echo "<td class='tbl-border tbl1' width='47%' valign='top'><a href='".INFUSIONS."car_list_panel/car_desc.php?action=view&car_id=".$data['car_id']."' title='".$data['car_model']."'>".$data['car_model']."</a></td>\n";
echo "<td class='tbl-border tbl1' width='12%' valign='top'>".$data['car_year']."</td>\n";
echo "<td class='tbl-border tbl1' width='14%' valign='top'>".$data['car_km']."</td>\n";
echo "<td class='tbl-border tbl1' width='12%' valign='top'>".$data['car_pris']."</td>\n";
echo "<td class='tbl-border tbl1' width='15%' valign='top'><a href='".INFUSIONS."car_list_panel/car_desc.php?action=view&car_id=".$data['car_id']."' title='".$data['car_model']."'><img width='75' height='56' src='".IMAGES."cars/".$data['car_pic1']."' alt='".$data['car_model']."' border='0' /></a></td>\n";
echo "</tr>\n</table>\n";
}
echo " <div align='left' style='vertical-align: middle;'><a href='java script:history.back()' title='".$locale['ads310']."'><img src='".INFUSIONS."car_list_panel/images/retur.gif' border='0' style='vertical-align:middle;' alt='".$locale['ads310']."' /></a> <a href='#' onclick='print();' title='".$locale['ads313']."'><img src='".THEME."images/printer.gif' border='0' style='vertical-align: bottom;' alt='".$locale['ads313']."' /></a></div>\n";
closetable();
} else {
opentable($locale['ads008']);
echo "<div>".$locale['ads009']."</div>\n";
echo "<div align='left' style='vertical-align: middle;'><a href='java script:history.back()' title='".$locale['ads310']."'><img src='".INFUSIONS."car_list_panel/images/retur.gif' border='0' style='vertical-align:middle;' alt='".$locale['ads310']."' /></a> <a href='#' onclick='print();' title='".$locale['ads313']."'><img src='".THEME."images/printer.gif' border='0' style='vertical-align: bottom;' alt='".$locale['ads313']."' /></a></div>\n";
closetable();
}
Mvh.
Buxxy.
