We have moved to GitHub Issues
Created by Shannon Deminick 29 Sep 2015, 09:18:36 Updated by Shannon Deminick 29 Sep 2015, 09:45:42
The GetPagedResultsByQuery orderBy parameter can allow SQL Injection - this can only be attempted with authenticated requests and in most cases the attempt will end up with invalid SQL.
Assignee: Shannon Deminick
Backwards Compatible: True
Due in version: 7.3.0