Loading...

XML

Word

Printable

Type: Bug
Resolution: Won't Fix
Priority: Major
Fix Version/s: 3.0.15-RC1
Affects Version/s: 3.0.x
Component/s: Other
Labels:
None

phpBB Import Key:
http://www.phpbb.com/bugs/all/ticket.php?ticket_id=19345

Don't know whether this is by design or not: the complete SQL error message including parts of the faulty SQL statement is given to all users even if DEBUG-mode is disabled. This might give an attacker some information about potential issues with faulty modifications.

is related to

PHPBB-9079 Display backtrace on all E_USER_ERROR errors, not only SQL errors (when DEBUG_EXTRA is enabled)

Closed

PHPBB-10581 Malformed SQL is logged when user triggering it is shown the offending SQL

Closed

Assignee:: CHItA

Reporter:: PhilippK [X] (Inactive)

Votes:: 1 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 13/Jan/08 3:55 PM

Updated:: 10/Sep/17 9:33 AM

Resolved:: 10/Sep/17 9:33 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates