1. SA-MP Forums Archive
  2. SA-MP Scripting and Plugins
  3. Scripting Help

Linear Mode
sscanf
Banditukas
Banned
Posts: 534
Threads: 265
Joined: Jul 2014
#1

10.01.2015, 17:41
Hi,

sscanf escape string? because now i use threaded queries and i have player variables

Код:
new VariableFP[ MAX_PLAYERS ][ MAX_PLAYER_NAME ];
Код:
if (sscanf(params, "s[25]", VariableFP[ playerid ] ))
{
return 1;
}
And i have query inside it, in callback i use VariableFP update by player name, but if player again write this command He can change VariableFP value to other and then when query complete and take value From VariableFP it will be not that and player could do sql injection.
Find
Reply
« Next Oldest | Next Newest »


Messages In This Thread
sscanf - by Banditukas - 10.01.2015, 17:41
Re: sscanf - by bgedition - 10.01.2015, 17:48
Re: sscanf - by Banditukas - 10.01.2015, 17:52
Re: sscanf - by bgedition - 10.01.2015, 18:09
Re: sscanf - by Banditukas - 10.01.2015, 18:16
Re: sscanf - by PowerPC603 - 10.01.2015, 18:44
Re: sscanf - by Banditukas - 10.01.2015, 19:05
Re: sscanf - by bgedition - 10.01.2015, 19:16

Forum Jump:


Users browsing this thread: 1 Guest(s)
  1. SA-MP Forums Archive
  2. SA-MP Scripting and Plugins
  3. Scripting Help