盲SQL注入漏洞 [英] Blind SQL Injection vulnarability
问题描述
我们已经设置了一个sharepoint 2013服务器. 1个前端,1个DB和1个应用程序服务器.
We have a sharepoint 2013 server set up. 1 front-end, 1 DB and 1 app server.
一切都很好.上周突然在安全检查中,前端服务器检测到一个漏洞,内容为" Blind SQL Injection Vulnerability ". 我不知道这是从哪里来的.试图通过Google搜索相关博客,但没有任何帮助.这看起来像是更常见的问题.
Everything was perfectly fine. All of a sudden last week in the security check, a vulnerability has been detected with the front end server which says "Blind SQL Injection Vulnerability". I have no clue from where this is coming. Tried to google out related blogs but didn't get anything helpful. This looks like more generic issue.
问题的完整说明:
The page is vulnerable to blind SQL injections. Information can be mined from a database using blind SQL injection techniques.
SOLUTION
Vulnerable custom web applications and web pages must be altered to avoid SQL injection issues. For third-party products, upgrading to the latest version of the product, or applying a custom fix will be necessary.
正在寻求帮助.
感谢您的回应.
感谢&问候
毗湿婆
推荐答案
我们已经设置了一个sharepoint 2013服务器. 1个前端,1个DB和1个应用程序服务器.
We have a sharepoint 2013 server set up. 1 front-end, 1 DB and 1 app server.
一切都很好.上周突然在安全检查中,前端服务器检测到一个漏洞,内容为" Blind SQL Injection Vulnerability ". 我不知道这是从哪里来的.试图通过Google搜索相关博客,但没有任何帮助.这看起来像是更常见的问题.
Everything was perfectly fine. All of a sudden last week in the security check, a vulnerability has been detected with the front end server which says "Blind SQL Injection Vulnerability". I have no clue from where this is coming. Tried to google out related blogs but didn't get anything helpful. This looks like more generic issue.
问题的完整说明:
The page is vulnerable to blind SQL injections. Information can be mined from a database using blind SQL injection techniques.
SOLUTION
Vulnerable custom web applications and web pages must be altered to avoid SQL injection issues. For third-party products, upgrading to the latest version of the product, or applying a custom fix will be necessary.
正在寻求帮助.
感谢您的回应.
感谢&问候
Vishwa
这篇关于盲SQL注入漏洞的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!