bugs in hillffair2k19 project #98
Comments
|
link's might not work , by redirection . |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
{{ message }}
sorry for posting it here , it is for the app of latest eir , but you guys removed it so ....
(wise decision btw)
hey ! you guys changed the implementation , which might have removed the db wipeout threat and
thats a good thing . i guess you also tweaked /User handler , but with all respect ,
there are still some loop holes and traversing is still possible
for example this link .
http://api.hillffair.com/User/5'%20OR%201=1%20--'
this statement will give you top row of the table
now you have data of first person
now you need to select every one else , but the first person
say its firebase_id is 0akwYovxZnf8h6Ja12gj28OzWEr1
now you need to select every body who is not first person
http://api.hillffair.com/User/5'%20OR%20(1=1%20AND%20firebase_id%20!=%20%220akwYovxZnf8h6Ja12gj28OzWEr1%22%20%20)%20--'
( 5 ' OR (1=1 AND firebase_id != "0akwYovxZnf8h6Ja12gj28OzWEr1" ))
which is just like adding inner boolian operations
now you have 2 person's data
now do the same to get the third one , select everybody who is not first and not second
just like that ! ezpz .
but later ,i found that "/leaderboard" also does the same thing . which gives me feeling dat "content security" is NOT the perpose app and as it is a intercollege project it is not even
necessary (but still i suggest , we should try our best to make our product standouu )
still i liked traversing thingy i made :P (seriously i made it myself), and also plz dont hate me , ill NOT try to do any unethical thing with the app . app is yours and yours only <3 .
tell me if i should delete this or not , or in case you want me to stop interfering with your club's decision !?
The text was updated successfully, but these errors were encountered: