UPDATES EasyBlog 6.0.14 Released! Joomla 5.x and PHP 8.x compatible now!

Helpdesk

Your Time
Our Time
Response Time
24 — 48 hours
We strive to provide the fastest ever response possible. However, we are not super beings.

Allow at least 24 — 48 hours
  Support is offline
It is currently off working hours and most of us aren't around

Rest assured that we will get back to you as soon as the day starts tomorrow!
Open a New Ticket
Powered by EasyDiscuss for Joomla!
  Support is offline
  1. Forums
  2. General
  3. Error In Sql After Using Apostrophe (') In Search ...
Gravity Stack

error in sql after using apostrophe (') in search using easyblog plugin

Gravity Stack ·
General
·
12:29 AM Tuesday, 04 March 2014
None
When using the search plugin for easyblog, placing an apostrophe in the search term such as in a search for "bob's apples" throws an sql error, upon investigating it appears this is due to the value not being escaped leaving the plugin vulnerable to SQL injection attacks.
4 Replies
Oldest First  
The replies under this section are restricted to logged in users or users with an active subscription with us
Visit Store Login
We use cookies to understand how you use our site and to improve your experience on our website.
By continuing to use our site, you accept our use of cookies, Privacy Policy and Terms of Use.
I Accept