Closed

PHP Security Check, SQL Injection

We use osCommerce for all our clients and provide specific plugins to them.

However, one of the plugins got hijacked and we could only remove it from the shop.

The client needs the plugin and we could not find out how someone could break through it. Most probably it was a SQL-Injection.

We will send you the entire source code of the oscommerce plugin and your job is to find the insecure line and fix it.

We will not give you access to the client's shop system for testing, of course.

This means: you should set up a simple oscommerce at your localhost or test server. Copy the plugin into it and test it there.

Then, let us know if you found the bug. If so, we will send you the payment in advance and after that, you tell us where you found it and also how to fix it.

Payment is in advance with 100% - no escrow and no payment if you can not find it.

The job requires very high PHP and security skills. If you are not experienced in this subject, please do not bid/waste your and my time.

I will send you the oscommerce plugin after bid. As soon as i have your confirmation that you found the bug => project awarding to you, full payment, delivery of fixed script and rating.

Please do not ask for exceptions. References are useless here. The only thing that counts for us, is: whether you find the bug or not.

This security issue is worth a lot and very important. That's why the budget is that big for it.

Looking forward to delivery asap to get the shops online again.

Skills: MySQL, OSCommerce, PHP, Web Security

See more: oscommerce security check, oscommerce sql injection, sql injection oscommerce, you break it we fix it, why use escrow online, where can i find a online job, use escrow online payment, test your php skills, test php code online, subject php, s.i.s. security, set up escrow, security job, online php job, online escrow us, online escrow payment system, online code escrow, job security, job online testing, i will check this out, how to got online job, how to find job online, however big, how do you use escrow online, how can you get out of escrow

About the Employer:
( 0 reviews ) Unaco, Barbados

Project ID: #595630

29 freelancers are bidding on average $1046 for this job

webtechinfo

hi please check inbox thank you

$750 USD in 6 days
(24 Reviews)
5.3
infyagent

Hi, Our experts can do this project. Check your PM to get to know more about our profile. Cheers, InfyAgent

$1100 USD in 7 days
(8 Reviews)
4.3
Oldo

I have 4 years experience of PHP security coding and SQL injections is what I've been studying in University

$750 USD in 5 days
(3 Reviews)
3.8
sat12345

Plz check PMB...

$800 USD in 4 days
(51 Reviews)
3.9
developerviral

-----++ Your Search Ends Here ++-----Please check your pmb before Deciding.

$1100 USD in 10 days
(9 Reviews)
3.2
ZenNet

Hey, I have done my share of 'vulnerability testing', and should be able to sort for you ASAP. Check your PMB. Cheers

$750 USD in 1 day
(1 Review)
2.7
PeterUK08

Will take a look at this for you.

$1200 USD in 5 days
(1 Review)
2.5
suryavikas

Hi, I work for a top MNC called AOL, with profile of building high end can secure web application. I can fix the code and problem really quickly for you. Regards Surya

$1000 USD in 7 days
(1 Review)
1.6
razvanct

You have PM

$950 USD in 2 days
(1 Review)
1.2
sailu144cw

Hi! I have gone through your requirement and i am glad that i can accomplish this task, i would be more interested to speak to you on IM. Pls give us an opportunity to work with you.

$750 USD in 2 days
(0 Reviews)
0.0
prodevelopertr

Hello, I'm a software security expert. I've fixed lots of security problems like SQL Injection, XPath Injection, XSS, RFI, CSRF, Session fixation etc. I have 5+ years PHP experience. I can fix your OsCommerce plugin s More

$1500 USD in 3 days
(0 Reviews)
0.0
libni

I can check whether they did it through SQL injection, if so how.

$750 USD in 2 days
(0 Reviews)
0.0
wysISwyg

I'm a thorough AppSec Pro. well versed with sql injections (blind/string/integer etc.) and other types of issues on web apps. or standalone apps for that matter. Pls. check PM as I have shared more details about me More

$1500 USD in 10 days
(0 Reviews)
0.0
sanisoftechnolo

Hello, I represent SANIsoft, based in Nagpur, India and we develop large, high performance and scalable PHP applications. Our team has extensive experience (about 10 years) in PHP programming (LAMP stack). All our t More

$750 USD in 5 days
(0 Reviews)
0.0
grance

[url removed, login to view] sir,we're the Professional Supplier of software. we're very interested in your PM,Please visit our official website [url removed, login to view] ********** We have group of highly qualified Developers, Analyst , More

$800 USD in 20 days
(0 Reviews)
0.0
Procode

Hello, I've found bugs in some PHP CMSs and also in private web applications. In my day job I develop applications in PHP and I'm always putting an eye on security. My plan to find the hole is not just testing but a hu More

$1000 USD in 4 days
(0 Reviews)
0.0
tarique111

hi, I can get this done if you like. Please check PMB

$1200 USD in 8 days
(0 Reviews)
0.0
lariscysoftware

I have a lot of experience in SQL Injection detection and have worked with SQL and PHP for over 5 years. I would love the chance to work on your problem and resolve it for you. Thank you in advance for your considerati More

$750 USD in 5 days
(0 Reviews)
0.0
SecurityExperts

We will guarantee 99.9% hacker protection and vulnerability free website. This is custom work, we use only manual methods of analysis. See our website: [url removed, login to view]

$5000 USD in 2 days
(0 Reviews)
0.0
mohon05026

Hi Please check my PM. Thanks

$750 USD in 5 days
(0 Reviews)
0.0