Just from that I can deduce without any tools that there are severe Sql Injection issues, probably XML injection and cross-site scripting vulnerabilities too.
And that is just on a visual inspection. An hacker with the simplest of tools (Burp, Web Scarab, paros, etc.) could find myriad infiltration pathways in a matter of minutes.
Wow! You’re not kiddin.
Don’t go near it.
Southack tells me they are now scrubbing input.
Too late, of course.
But I can only believe they are reading our -- and many other -- tech forums, and learning from our horrified comments.
I'm billin' the bastards. They never would have known about SQL inject until I showed them the vulnerability.
I mean DAMN guys, don’t you at LEAST do character-limiting to A-Z and 0-9? Not that that would help, anyone can inject something on the raw HTTP response before it sends out. But I mean, just to show the hackers you are AWARE of some EXTREMELY basic security????!?!?