Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

sqli: false positive #19

Open
syinwu opened this issue Mar 20, 2024 · 4 comments
Open

sqli: false positive #19

syinwu opened this issue Mar 20, 2024 · 4 comments

Comments

@syinwu
Copy link
Member

syinwu commented Mar 20, 2024

img_v3_0295_462f1259-e199-46a2-917f-dbea9ae6544g

@fzipi
Copy link
Member

fzipi commented Jul 3, 2024

@syinwu Do you have an idea how to fix this one? Can you push a test case so we can start figuring out the fix?

@k4n5ha0
Copy link

k4n5ha0 commented Oct 14, 2024

input := "6--GI3o7s-PK0PTgKT9SQux8HSpwcmcjYBhvktBJ_ww="

image

so deny.fix it ,is very hard

@fzipi
Copy link
Member

fzipi commented Oct 14, 2024

Sorry, I might not have understood this last comment. So you are saying "this is very hard to solve"? And the test case is your input above?

@k4n5ha0
Copy link

k4n5ha0 commented Oct 19, 2024

Sorry, I might not have understood this last comment. So you are saying "this is very hard to solve"? And the test case is your input above?

yes,it's hard to fix.because -- maybe userinput or hackinput.
like value "6--GI3o7s-PK0PTgKT9SQux8HSpwcmcjYBhvktBJ_ww=" is a systemcode not attack.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants