View Single Post
JoshGomez
Member
Join Date: Apr 2006
Location: Sweden
Old 07-15-2008 , 08:16   Re: CS Items 1.0
Reply With Quote #10

You can only set the password in console, I don't know why it's not working for you but try use csitems_password "test".
The password is used to login on the website.

I am sure you wont be able to use the url address to hack the sql query.
There is also no global vars, I heard they are insecure so I did not use them.

I don't know but if there is a way to download the index.php then they could steal the sql password and the username.
To prevent the hacker from stealing everything from your database you should make a new user and password for only this plugin.

Last edited by JoshGomez; 07-15-2008 at 12:31.
JoshGomez is offline