SQL Server Forums
Profile | Register | Active Topics | Members | Search | Forum FAQ
 
Register Now and get your question answered!
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 General SQL Server Forums
 New to SQL Server Programming
 SQL Injection Errors on Spam for Submissions
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

dbonifield
Starting Member

USA
1 Posts

Posted - 06/19/2013 :  14:54:38  Show Profile  Reply with Quote
I manage a sql database for one client who happens to operate a funeral home. We use a "Tribute Submission" page that puts their tributes into a database awaiting my approval or removal of them before they are posted to a deceased's tribute page. I am getting spam submissions of SQL injection errors around 300-900 per day. This is my error code that shows....

Warning: mysql_result() [function.mysql-result]: Unable to jump to row 0 on MySQL result index 42 in /home/content/23/8106623/html/Skradski/tributes.php on line 178

Warning: mysql_result() [function.mysql-result]: Unable to jump to row 0 on MySQL result index 42 in /home/content/23/8106623/html/Skradski/tributes.php on line 179

and I am getting submissions that look like this:

Tribute for:

Email:
sjptjjxwgup@kjkkfu.com
Name:
aakwtphajwvya
City:
New York
State:
NY
Tribute:
queens science museum
quinn travel insurance
rain water harvesting pictures


What can I add to my tribute.php page to stop these postings from being submitted into my approval/disapproval database? It is taking me almost 2 hours a day to clean out all the spam submissions.

Any helpful suggestions?

Thank you.

visakh16
Very Important crosS Applying yaK Herder

India
52249 Posts

Posted - 06/20/2013 :  00:57:41  Show Profile  Reply with Quote
you seem to be using my-sql seeing the warning messages. This is a forum dedicated to MS SQL Server product so there wont be enough expertise on my-sql found here. You may be better off posting this in some mysql forums. there's one at www.dbforums.com

------------------------------------------------------------------------------------------------------
SQL Server MVP
http://visakhm.blogspot.com/
https://www.facebook.com/VmBlogs
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
SQL Server Forums © 2000-2009 SQLTeam Publishing, LLC Go To Top Of Page
This page was generated in 0.36 seconds. Powered By: Snitz Forums 2000