Fix SQL Injection Problem on ECard Page on IIS MS SQL

Closed Posted Dec 9, 2013 Paid on delivery
Closed Paid on delivery

A friend's website was recently hacked with a SQL Injection, similar to what is outlined here: [url removed, login to view] Job description: My friend's website was recently hacked using SQL Injection on IIS/MS SQL/.net. The code appears to be simple enough, but unfortunately I don't have the time or tools to recompile the dlls. The hack itself appended some links to the end of every field in the DB. Whenever I have cleaned up the DB, the hack was executed again a day or so later. I was able to find the way that they hacked through the logs. I can provide you with the code, the specific hack that was used to update the DB and the most likely spot in the code that needs to be changed. I believe this should be a fairly straight-forward fix, so I'm looking for pricing to tell my friend. After that, we'll chose the individual to perform the work and move forward on getting a permanent resolution in place. Web development project type: Modification to an existing project Client side or server side development: Server Side Development Specific programming languages desired: aspx, MS SQL, .net Desired website or component functionality: This is the ecard portion of the website, which is located here [url removed, login to view] The hack is detailed here: [url removed, login to view]

CSS HTML Joomla PHP

Project ID: #5212834

About the project

11 proposals Remote project Active Jan 15, 2014