Yes, it is an SQL injection in fact.
2008/8/21 Mike Klaas <[EMAIL PROTECTED]>
> Hi Jim,
>
> Looks like a sql injection attack that is automatically entered into search
> forms. Solr should not be affected, but it could affect you if you insert
> the raw/unescaped query into a sql database (for l
Hi Jim,
Looks like a sql injection attack that is automatically entered into
search forms. Solr should not be affected, but it could affect you if
you insert the raw/unescaped query into a sql database (for logging,
etc.).
-Mike
On 21-Aug-08, at 3:30 PM, Jim Hurst wrote:
Hey folks,
I
Hey folks,
I was just perusing a log on a production server and saw the entry
below. It's all one line in the log, I've added line breaks to ease
your viewing. I'm not informed enough to evaluate this as a threat.
Any advice? Thanks,
-Jim
PS: query is lightly sanitized,
