Online competitions security problem?

Wood · 13 June, 2002, 06:47:15 PM

I entered the From Hell competition twice. I didn't mean to. I forgot I entered it.

I thought it seemed familiar, so I checked out the other competitions which I know I've entered (yes, all of them as a matter of course), and the site's got the entry form blank there for me.

This shouldn't be, should it?

Oddboy · 13 June, 2002, 07:19:01 PM

I did that too!
I'm sure they used to say when you've already entered the comp.

Wake · 13 June, 2002, 07:39:41 PM

It only says you've already entered if you've 'just' entered.

However, if you enter twice the new answer replaces the old one.

Wake

Art · 13 June, 2002, 08:12:22 PM

Hi. I've noticed another security issue. It appears you can enter arbitarty HTML into the chat room, which includes

Oddboy · 13 June, 2002, 09:50:47 PM

Dude - you've seriously shagged this thread up.

I don't think you're fully cured from the scojoitus you had last week.

Art · 13 June, 2002, 10:08:28 PM

Yeah, sorry about that. I've mailed Wake and I think PHP provides an easy way to stop it ever happening again, which i've also mailed him.

Online competitions security problem?

Wood

Oddboy

Wake

Art

Oddboy

Art