Start a new topic

SQL injections in search

Hello Team,


One of out client Maria Tash is using searchanise sine one year. In backend search terms we have observed SQL injections happening. PFA of screenshots for more information.


Please let us know how we can avoid those?

Hello!


We need to discuss your question with our developers. We'll get back to you at the first opportunity.


Thank you.

Hi!


Thank you for your time and patience.


We confirm that javascript:/*</script><svg/... query shown on the provided screenshot is not a SQL injection. It seems one of your customers used this line for search by mistake. All the other quesries on the provided screenshot also do not relate to SQL.


If you have any other questions, feel free to ask! We'll be glad to help.


Angelina

Login or Signup to post a comment