Forum OpenACS Q&A: Response to Stealing Email Addresses -3x

Collapse
4: Response to Stealing Email Addresses -3x (response to 1)
Posted by Stan Kaufman on 08/13/02 06:13 AM
Have a look at http://www.ybos.net/doc/core-arch-guide/security-sql-smuggling.

Looks like this fix never made it into 3.2.5. What isn't clear to me in the above is where ad_block_sql_urls is best called. I presume in ad_page_variables but unless I'm completely blind or addled, it's not explicitly documented.