Fellow Bricoleurs,
Google Alerts notified me of this page yesterday:
http://packetstormsecurity.org/files/113840/bricolagecms-sqlxss.txt
We should not have any SQL injection vulnerabilities, because all of our code *should* be using placeholders. Can anyone confirm? (I'm not equipped to load it up and test right now.)
Thanks,
David
Google Alerts notified me of this page yesterday:
http://packetstormsecurity.org/files/113840/bricolagecms-sqlxss.txt
We should not have any SQL injection vulnerabilities, because all of our code *should* be using placeholders. Can anyone confirm? (I'm not equipped to load it up and test right now.)
Thanks,
David