We have just completed a security test of our DynamicWeb 8.0.2 solution, which shows that it is possible to perform sql injection through a parameter on the webpage /admin/public/404.aspx?404...
I will not post the url here, as it can be used unintentionally.
Sql Injection Check is not disabled in the security setup section.
What could be the problem?
/Kenneth Christensen
Developer forum
SQL Injection Check not working
Kenneth Christensen
Replies
You must be logged in to post in the forum