Menu

Topic-icon Security check pro is detecting google ad ?gclid params as SQL injection.

  • chizuoka
  • chizuoka's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
More
7 months 2 weeks ago #7451 by chizuoka
How do i avoid this? for example

/theurlhere?gclid=EAIaIQobChMIy4bGt6_S5gIVmgsrCh3Sowi2EAAYASAAEgLfi_D_BwE

is saying this "String used in the attack"
cGVuYW5nLS1tYWxheXNpYQ==

Where does this string even come from?

Please Log in or Create an account to join the conversation.

More
7 months 2 weeks ago #7461 by Jose
Hi chizuoka,

This is a false positive because this parameter contais two "--" (decoding it you get 'penang--malaysia'). To avoid it just enable the 'Easy config' feature from main panel of Securitycheck Pro.

Regards,
Jose

Please Log in or Create an account to join the conversation.

Time to create page: 0.068 seconds
Powered by Kunena Forum

Login or Sign In