but I just logged into this site using the exact security hole as mentioned below using the userid<BR><BR>' or 1=1 --<BR><BR><BR>??
Scott obviously didn't cover that hole. See my post below.
For real though, try it. Maybe its a userid already setup????<BR><BR>I used that username...no password
I was just curious if anyone has alerted admin about it?
So you should claim the credit.<BR><BR>firstname.lastname@example.org is the email address
I sent it to him, with links to both threads. This is sort of freaky.
Thanks for the heads up. This little hole has been plugged. If you find any others, or find a way to circumvent this fix, please do let me know - email@example.com or http://www.4GuysFromRolla.com/feedback.shtml<BR><BR>Thanks! :-)