people getting banned here....

SQL injection maybe? I didn't actually mess around with anything, but I did a quick test and it looks like the stat login page is vulnerable.

No, all script side. The devs (that created it) knew this would happen.

Ok, you still might want to check for sql injection vulnerabilites though. It looks like input isn't being sanitized properly (at least for the stat login)

Quote:

---

Originally Posted by omgh4x0rz

Ok, you still might want to check for sql injection vulnerabilites though. It looks like input isn't being sanitized properly (at least for the stat login)

---

so your saying people can hack into SRL webpage!:eek: :eek: :eek:

Quote:

---

Originally Posted by legendaryhero90

WOW

SRL is as corrupt as the U.S. Congress and the Bush Administration

i didnt know that mage of begu and jukka were doing such things...

OMG there are backstories to everything!!!

:eek: :eek: :eek: :eek: :eek: :eek: :eek: :eek: :eek: :eek: :eek:

---

Please, look at this bright light for few seconds.
*pling*
Now, forgot that weird bright light that you have never seen.

Thanks

Quote:

---

Originally Posted by legendaryhero90

so your saying people can hack into SRL webpage!:eek: :eek: :eek:

---

No, I'm just saying you can get it to return an sql query error, so people MIGHT be able to. But it is irrelevent because that isn't what jukka did.

Quote:

---

Originally Posted by Jason2gs

So what exactly did you do, Jukka? I know you screwed around with the stats, but how?

---

well, non members shouldnt know how to eighter, i know what i did was wrong, and i dont want more stuff like this to happen.

shortly: nobody should tell anybody, how i did it or there will be a massive problem..