User Information Changed
The other day someone changed every user's password on my site. Then they changed every user's email address to theirs - I assume the reason was that when the user used the password reset function, they would never see the information.
I'm trying to research what/where the vulnerability is in the script that I'm suing, but I don't really know where to start - not being a hacker, I don't even know the terms to search for here or on google.
Is this what is meant by mysql injection?
View Complete Forum Thread with Replies
Related Forum Messages:
Changed User Privileges And Now I Can't Log In
I read several web sites and O'Reilly's book on MySQL about securing the system tables. I removed several users and, as advised inthe book and web sites, changed the user "root" to another name with another password. I removed the site name as a host but kept the IP address. Now when I use phpMySdmin to get back in, it let's me past the login popup BUT it gives me the message: Error MySQL said: Access denied for user: 'root@localhost' (Using password: YES) The data in the database is not important but the database structure/definition is. I'd like to find a way to back up or dump that. Then I can reload MySQL and start over.
View Replies !
Merge Table To Share User Information
I run two different forums and I'm not sure on how to have both forums share the username, posts, and other user information. Each forum has their own database and I'd like to know if there was a way to merge the user tables instead of all the tables from the database.
View Replies !
Error In MySQL Administrator When I Try To Change The User Information
I recently install the MySQL 4.1.8-nt-max, and the MySQL Administrator, but when i try to change the information (name, description, email, etc.) in the Administrator I get the following error: " Invalid UTF-8 Error executing query (illegal mix of collations (latin1_swedish_ci,implicit) and (utf8_general_ci,coercible) for operation '=' " Before it happens the Administrator crash down ... Im from Mexico, so my Windows XP regional configurations are spanish / latinamerican. Any ideas about it?
View Replies !
Changed Characters
While using mysqldump to backup the databases on my server i noticed that all the the portuguese accented characters from my databases get screwed up and changed to wierd characters. What's up?
View Replies !
Get The Latest Changed Records
I hava a table with the following information CREATE TABLE TEMP1 (REFID INT, REVISION INT, FIELDNAM VARCHAR(10), VALUE VARCHAR(10)); INSERT INTO TEMP1 VALUES(1001, 0, A, A2); INSERT INTO TEMP1 VALUES(1001, 0, C, C2); INSERT INTO TEMP1 VALUES(1001, 0, E, E2); INSERT INTO TEMP1 VALUES(1002, 0, A, A3); INSERT INTO TEMP1 VALUES(1002, 0, B, B2); INSERT INTO TEMP1 VALUES(1002, 0, E, E3); INSERT INTO TEMP1 VALUES(1001, 1, A, A4); INSERT INTO TEMP1 VALUES(1001, 1, E, E4); Here based on latest revision and refid I should get the fieldnam and value. Expected output: REFID FIELDNAM VALUE REVISION 1001 A A4 1 1001 E E4 1 1002 B B2 0 1001 C C2 0
View Replies !
Float(m,n) Changed Between Mysql 4.0 And 5.0?
I have a float(11,10) field (default NULL) in one of my MyISAM tables. With MySQL 4.0.16, I can call an Update/Insert query with a value of , say 33.166668 to this field, and it updates correctly. When I retrieve that value again with a select statement, I get something like 33.1666668392 (10 digits after decimal). Which is correct. (The sql_mode server variable is set to 0) With the same field in MySQL 5.0, my experience is different. With the server sql_mode set to one of the strict values( SQL_TRANS_STRICT), i get an error about out of range value for the float field. when I change the sql_mode to not have the SQL_TRANS_STRICT, I get the same error as a warning, 1264 "Out of range...". When I retrieve this value, it is set to 10.0000000000, which is wrong. But , when I change the field description to float(11,5) and do an update, the value is updated right, but I get an intermittent "No rows updated" error. Could anybody please explain if the float definitions changed between versions? Does float(m,n) now mean that I can have only (m-n) digits before decimal point?
View Replies !
Rows Changed In Update SQL
Is there a way to find out how many rows got updated when i execute a update stmt. I would like to get the updated rows count in SQL. Let me know and Thanks in advance. update stmt where clause; now how can i get the count of rows that got updated.
View Replies !
How To Find Out Which Table Is Changed?
I dont have source code of my web application I installed. Its using mysql 5. when I create a new user account, I know "users" tables is changed, but there's also a couple other tables are modified. Is there a way I can find out which table is changed?
View Replies !
History Of Changed Percents
I have a table with data like that: percent date 50% 2007-05-01 30% 2007-05-02 30% 2007-05-03 50% 2007-05-04 50% 2007-05-05 20% 2007-05-06 20% 2007-05-07 50% 2007-05-08 70% 2007-05-09 70% 2007-05-10 The query has to return this rows: 50% 2007-05-01 30% 2007-05-02 50% 2007-05-04 20% 2007-05-06 50% 2007-05-08 70% 2007-05-09
View Replies !
Changed Datadir Now Mysql Won't Run
I changed the datadir using mysql administrator (so I could "see it") (I'm using version 5.0.x under OS X 10.4.5 and now mysql won't run and I don't know how to reset the datadir. I've reinstalled mysql and when I try to run it this is what I get: iBook-G4:/usr/local/mysql michael$ sudo ./bin/mysqld_safe & [16] 12878 iBook-G4:/usr/local/mysql michael$ Starting mysqld daemon with databases from /Users/michael/Sites STOPPING server from pid file /Users/michael/Sites/iBook-G4.pid 060329 12:38:24 mysqld ended
View Replies !
All Swedish Characters Is Changed
I'm doing Kevin Yanks tutorial about how to manage users with session (with some small modifications). But when the data is inserted into the table all Swedish characters is changed to some strange "¥" and "¶". Why is it so and how to fix it? According to PHPAdmin the collation is either UTF-8 (db) or Latin1_swedish (table)?
View Replies !
Changed Root Password, Now I Can't Do Anything
I am following the MySQL by Michael Kofler and looking at securing root access as currently it has no password. I've logged into the MySQL consol and changed password using : mysqladmin -u root -h localhost password XXX However, i now can't do anything in in mysql terminal it comes back "access denied for user 'root'@'localhost' (using password :NO)
View Replies !
Date And Time Stamp A Changed Row
I am about to declare a table with 20 columns. How do I create 4 more columns: 1. current Time 2. current Day of the month 3. current Month 4. current Year Such that: a. These 4 columns are not editable by the user. b. Whenever a row is updated/inserted/replace/etc. then these 4 columns in that row are automatically updated by the system accordingly.
View Replies !
Datetime Field Changed After ALTER
To archive when a row is added, I have a column called date_added which uses the data type DATETIME. I recently added a new column to my table "ALTER TABLE mytable ADD COLUMN mycolumn INT", and my stored dates have all been changed. In hindsight, was this to be expected? I am using PHP to both push data into MySQL and pull data from MySQL. To prevent such future blunders, is it good practice to store dates as CHAR data type, and actively store the date using PHP?
View Replies !
Phone Numbers Changed On Import
I have imported a cvs data file every way I can think of and I always get this weird problem. About 75% of my 4,000 files end up with the phone number 2147483647. I searched the cvs file and this number does not exist there. Is there an explaination for this?
View Replies !
Replication :: Master Log File Position Changed
I have a simple master/slave replication environment that is working smoothly with one exception. If I restart the master server the Master Log File is incremented by one (e.g. the original master log is named data-bin.000001 and the new master log is named data-bin.000002) the slave server never notices that the Master Log File and the Master Log Position have changed. Instead, the slave sits there waiting for new entries in the old Master Log File. I can tell this by executing a SHOW SLAVE STATUS on the slave server. I am not sure about this because I can't find any documentation on the proper behavior of mysql during this scenario, however, I am under the impression that slave server should be able to figure this out and continue replicating, without requiring me to execute an "CHANGE MASTER..." command on the slave server every time the master is restarted. Of course, I assume this same problem will occur when the Master Log File grows to its maximum size and a new Master Log File is created. If anybody who has experience with mysql replication could just confirm that the behavior I am seeing is not correct, that would be great. Or if anybody has any suggestions as to what, if anything, is wrong with my setup. Code:
View Replies !
Row Cannot Be Located For Updating. Some Values Might Have Changed Since It Was Last Updated
I've recently migrated from access to mysql with vb6). Unfortunately, i get the following error whenever the .update is executed on the recordset. "Row Cannot be located for updating. Some values might have changed since it was last updated" The select statement is: Select * from tablename, connection,3,3 (have also modified the 3,3, to be adOpenDynamic, adLockOptimistic) I have tried checking the flag To Return Matching Rows, I've added the option = 2 in the connection string, i have a primary key field in the table, and I've also tried re-assigning it to itself.
View Replies !
String Error - Quotes Changed To Question Marks
I recently converted an asp/access site to an asp/mysql site. Now all my strings are displaying funky. For example if I have the text - Why don't we say "Yipee" - it displays on my site as - Why don?t we say ?Yipee?. The same change is being made when I use a sentence with "..." in it. I like ... baseball is changed to - I like?baseball. Any thoughts as to why this is happening? Sometimes it is actually being changed somehow in the database, and sometimes it is correct in the database, but then changed when it displays on the web.
View Replies !
Mysql Appears To Have Changed The 'password' Function Hashing
I've been using Mysql for about 6 months but in fairly basic fashion. For a cms I have built, I have a users table, with userName and password fields. An admin can create new users, and the password is hashed using the PASSWORD() function. SQL: "INSERT INTO users VALUES ('', '$userName', PASSWORD('$userPwd')) Straight out of the book basically. Now the problem is that all this has been functioning fine on a couple of sites on external servers, plus a couple of local machines. Until today, on my main dev machine - yesterday a user could log in, today they couldn't. As far as I can tell, nothing has changed. But when I look at the hashes in the database table, they are 41 chrs, and when I add a new user, the hash is 16 characters. I know that at some stage the hash length was increased between mysql versions, but I have not updated the install (I run XAMPP for Windows 1.4.14, which appears to install php 5.0.4 and mysql 4.1.12) Is there any other reason that the hash length could change to 16? I'd like to know why this happened so that I'm prepared if it happens on the server (where it is not so easy to hack in and add new users that can log in again)
View Replies !
Replace Information In One Table With Information From Another Table
I've got two tables in one DB they have various columns; what I need to know is how I can take the information from a column in one table and put it in to a column in another table. table1 - characters table2 - characters_jackedup I want to take the information from column maxMp in table1 and put the information in table2 under maxMp the column exists in both; but the columns are in a different order.
View Replies !
Error 1142 - Mes. The Following Occured: SELECT Command Denied To User Xx@hostx.com For Table 'user
When trying to do anything to do with "User Administration" in MySQL Administrator 5.1 connecting to a remote MySQL database, I get the following message when I click on the "User Administration" icon/text in top left frame. Verbatim quote apart from my connection details which I am anonymising): A MySQL error was encountered. The message is: Could not fetch user names. The following occured: SELECT command denied to user xxx@hostxxx.xxx.xxx.com for table 'user' (1142) No I have looked through search and found the following: http://lists.mysql.com/mysql/134369 Unfortunately that tells me that it has happened to someone else but that's about it. What is one supposed to do with the fix? I am wondering if this is why I cannot create ordrop any tables with this username at the moment, even though it is the Admin level username....
View Replies !
Root User Denied Access To Fetch User List.
I can still log onto MySQL administrator or the command line program but I somehow appear to have lost all priveliges to alter or view the user list from this account. Even under the command line interface I can login but it tells me access is denied when I try to alter "root" permissions on a database. I cannot seem to log onto any of the other accounts created but obviously if I could get into the user admin I could solve this.
View Replies !
Copy User Privileges To A Newly Created User.
I have just created a user with specific permissions to certain tables in different databases. Now I have to create serveral more users with the same permission. Is there a command in MySQL that allows me to create the new user by copying the privileges from a template user?
View Replies !
Mysql Information
My company is currently investigating in several database, projects tracking software. Being a beginner, I would like to know if you could provide me some support concerning the capabilities of MYSQL. We are looking in a software that could achieve the following: - Enter text related to specific subjects (text can be pretty long and should be searchable by key words) - linking tables and extract specific information from those tables (no problem with that). - The ability to assign author privileges and to change them easily) - The ability to assign task to some users. - the ability to access the database and modify the information on the web. - the ability to automatically send the information by email or at least notify one of the user that a project has been updated. - the ability to point at other document (word, pdf etc) and to easily access those documents from the database.
View Replies !
Select Information
my current sql query is SELECT * FROM entries WHERE approved='1' ORDER BY rating DESC,hits DESC,votes DESC which works. but i want to implement multiple pages to my site. so i only want it to return for instance the first 15 rows, or only row 16-30 or only 31-45 etc
View Replies !
Entering Information
I have looked threw many books and the nety but cant find how I would enter more attributes into a table that already exists in a database in MySql All I seem to find is for to insert values into a table.
View Replies !
Group Information
I have a database with a date field in it, and I am trying to figure out how I can pull information for a calendar week at a time.I am sure that some type of loop is needed, but I am stuck trying to figure out the logic.
View Replies !
Most Common Information In DB
I have a database with the following fields id, system, reviewer an example would be 0, 5, 9 1, 5, 9 2, 4, 9 is there a way that i can search for all of reviewer 9's reviews, and find out what system is reviewed the most...?? so reviewer 9, it would be system 5 according to the example above.
View Replies !
Selecting Information
I need to select fields from one column, but this column contains duplicates on many rows. How do I write a query that only selects the info once and ignore it if it exists again.Pretty much I want to build an optionbox with every field from this column that is different. Since some fields in this column have the same value I don't want to list it twice so the standard SELECT all will not work.
View Replies !
Sortting Information
Here is a makeshift page I have made for sorting information regarding some car's and their respective times in drag racing. http://www.1320video.com/times.php As you may notice, when sorting some columns in a ASC to DESC fashion, it places the zero's before everything else. Without actually not selecting the rows with 0's in the SQL statement, is there a way to sort these so they show at the end?
View Replies !
Selecting Old Information
hello, i have a table called messages and i have a column in which the date of the message was created called dateSet, how can i select all of the messages that are older than 6months?
View Replies !
Retrieving Information As It Is
I have a mulitline input field, going to a database, when i view the inputted information in the database "browse" i looks exactly like it does when i typed it in for example Line one Line Two When i get the information back out using a SQL statement it come out in one lone line thus Line one Line two, with two boxes in between where the line break should be. I need to to come out as it went in Is this possible?
View Replies !
Get Information About An Error
I'm running MySQL 5.0.48 and would like to be able to retrieve an error number or error message when an error has occurred. I know that I can do: SELECT @@ERROR_COUNT; But since I mostly know that an error has occurred that is of little use to me. When connected to MySQL I can do things like: SHOW ERRORS; SHOW WARNINGS; But I can not do a SELECT so that is not of much use either. The reason I want to do this is to log errors that occur in a Stored Procedure.
View Replies !
Find Row With Most Information
Is it possbile to find select the row of a table, which holds the most information, via a SQL query ? E.g. there are 3 rows, in 2 of them are only 3 fields filled with data, the 3rd row contains data in all x rows, so this row holds the most information. Is it possible to do that generic, so without checking each specific column in the query?
View Replies !
Transfering Information Between 2 Different DBs
i have an old DB done for a forum in the mambo system ( now called joomla ), but i am changing now to vbulletin system + vbadvanced. The DB i use is MySQL in both forums, but when i open the backup file from mambo and compare it to the vbulleting DB using my phpdev system, i see that they are tottally different. would you have any tip for me so i can save at least my users and their information from mambo to vbulletin? Can someone help me? It´s a very seriou forum, it´s from Alias ( 3D Maya Software productor), and so, could please somebody give me a tip? A help? A force to make me win my MySQL battle?
View Replies !
Fetching Information
an example: $dbl->query($query); $res = $dbl->get_result(); how do i pull information from a row in $res without automatically moving the pointer ahead.with: $myrow = $res->fetch_array() i pull the correct information but i don't want the pointer to move ahead in $res.
View Replies !
Sql Headers Information
I have a scSi disk 36.4GB, I lost information from it and tried to recover with other recovery softwares to no avail finally I got winhex & got the professional licence. I can now be able to see all the information on the 1 whole NTFS partition, but the problem is that I can't be able to recover it. whenever I open the logical drive I can see all the information and most of the information is stack up in a "free space" which is around 33gb which I can be able to see has all the information that I need. I have tried to recover the free space but its only copied to the location that I specify and no recoveries are made. recovering the files by type/ name has bore no fruits. A freind told me I have to curve out that area and use data extractors to get the information out of that area (freee space). The information in that drive are sql data bases and zip files. whats the header for sql. what techniques do I use to curve out that space and be abele to extract the information, for I can even read the information in text format. which are the data extractors available in the market.
View Replies !
Passing Information
I'm having trouble passing an item from a text box to another screen. Whenever I enter an address into the box like 123 First St. the only thing that gets passed is the 123 on the URL. Because of the %20 spaces it cuts it off. How do I remedy that?
View Replies !
Displaying Information
I have inserted all of my information into my data base. Now I want to print it onto my website. I know how to get it to print onto my website, but I don't know how to organize it. I want to print the information into an table, and I want the table rows to alternate colors. Also I want to adjust font, how would I do this?
View Replies !
|
TRACKER
