Thread
:
CS Items 2.0/1.3 - 02/13/2010
View Single Post
JoshGomez
Member
Join Date: Apr 2006
Location: Sweden
07-15-2008 , 08:16 Re: CS Items 1.0
#
10
You can only set the password in console, I don't know why it's not working for you but try use csitems_password "test".
The password is used to login on the website.
I am sure you wont be able to use the url address to hack the sql query.
There is also no global vars, I heard they are insecure so I did not use them.
I don't know but if there is a way to download the index.php then they could steal the sql password and the username.
To prevent the hacker from stealing everything from your database you should make a new user and password for only this plugin.
Last edited by JoshGomez; 07-15-2008 at
12:31
.
JoshGomez
View Public Profile
Send a private message to JoshGomez
Visit JoshGomez's homepage!
Find More Posts by JoshGomez