sanitised SQL input

[ghost]

📊 Metadata *

Bounty URL:https://huntr.dev/bounties/2-other-akshayp282/QuizX/

⚙️ Description *

I sanitised input from the course add/edit/delete page

💻 Technical Description *

I used the addslashes builtin addad in PHP 4 to sanitise the cname parameter to the /QUIZ/partials/_handleCourse.php page. This adds an escape () before any quotes which stops any potential SQL injection.

🐛 Proof of Concept (PoC) *

Navigate to /QUIZ/partials/_deletecourse.php and enter ' or ''=='. If you press Delete, all courses will be deleted.

🔥 Proof of Fix (PoF) *

If you repeat as above, you will recieve the Course does not exist error.

👍 User Acceptance Testing (UAT)

N/A

[JamieSlome]

Hey 👋 @bolshoytoster - we no longer accept vulnerability fixes through GitHub PRs.

I can see that you correctly submitted a patch through our UI. The maintainer has been notified by e-mail and a comment has been left on the original GitHub Issue.

Thanks for your continued work! 🎉