Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Phantom tasting reviews #8

Open
GoogleCodeExporter opened this issue Feb 15, 2016 · 1 comment
Open

Phantom tasting reviews #8

GoogleCodeExporter opened this issue Feb 15, 2016 · 1 comment
Labels
bug

Comments

@GoogleCodeExporter
Copy link 

While operating a brewblogger site on the internet, phantom tasting reviews 
will appear as bad guys inject garbage data in to the review form. These show 
up a empty reviews. No server side data validation is being done.

What version of the product are you using? On what operating system?

BrewBlogger 2.3.2 Club Edition on Linux.


Please provide any additional information below.

I made a minor change to sections/add_review.inc.php to verify the scores are 
integers, before adding a record in the database.

I have attached a patch file. Copy it to the 'sections' directory, then run the 
following command in that directory to patch the file:

patch -p1 < patchfile

I know development on 2.3.2 is essentially dead, but hope this will help others 
frustrated by this issue.

Original issue reported on code.google.com by [email protected] on 21 Jun 2011 at 9:37
@GoogleCodeExporter
Copy link
Author 

Original patch had issues. Here is an updated version.

Original comment by [email protected] on 22 Jun 2011 at 6:32

Attachments:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@geoffhumphrey @GoogleCodeExporter