Why have extra values been added to my database?

Asked May 21 '20 at 17:22

Active May 21 '20 at 17:22

Viewed 20 times

I have a website which lists products available in my shop, which is populated from a products table from a SQL database. I have written the site in PHP.

Overnight some extra values have been added to my products table. 20 extra rows have been added with the values "admin" and "adminu" over and over again.

I don't understand how this has happened but suspect it is something to do with SQL injection?

asked May 21 '20 at 17:22

Abby

Yes, almost certainly SQL injection attempts. – BadHorsie May 21 '20 at 17:24
Is that site need any authorized login? – Srinika Pinnaduwage May 21 '20 at 17:25
It could be SQL injection attempts but not actual SQL injection holes. Instead, it's probably permission issues, where you're allowing a route to insert products without authorization. – aynber May 21 '20 at 17:30
Yes, it does need authorized login , which is a bit worrying – Abby May 21 '20 at 17:39

Why have extra values been added to my database?

0 Answers0