SQL Injection when loading contacts / fail to load contacts

Tue Nov 06, 2012 8:59 pm in AirDroid Web

page 1 / 1
DominikDorn
OP

SQL Injection when loading contacts / fail to load contacts

I tried to manage my contacts through air droid, however, my contacts never loaded. When I inspected the network traffic, it shows an SQL Exception. Here are the headers & the stacktrace:


Request URL:
http://192.168.0.12:8888/sdctl/contacts/grouplist/?callback=_jqjsp&_1352281918517=
Request Method:
GET
{"err": "Internal Server Error
android.database.sqlite.SQLiteException:near "09": syntax error (code 1): , while compiling: SELECT _id FROM view_groups WHERE (1) AND ((title='BeachSingles '09'))
Trace:
In android.database.DatabaseUtils.readExceptionFromParcel(DatabaseUtils.java:184)
In android.database.DatabaseUtils.readExceptionFromParcel(DatabaseUtils.java:140)
In android.content.ContentProviderProxy.query(ContentProviderNative.java:366)
In android.content.ContentResolver.query(ContentResolver.java:372)
In android.content.ContentResolver.query(ContentResolver.java:315)
In com.ad.wd.common.w.a(Unknown Source)
In com.ad.wd.common.y.b(Unknown Source)
In com.ad.wd.webserver.handler.i.a(Unknown Source)
In com.ad.wd.b.f.a(Unknown Source)
In com.ad.wd.b.a.e.a(Unknown Source)
In com.ad.wd.b.a.a.run(Unknown Source)
In java.lang.Thread.run(Thread.java:856)
"}
DominikDorn
Rinaldo Comisso
#1

Re: SQL Injection when loading contacts / fail to load contacts

I tried to manage my contacts through air droid, however, my contacts never loaded. When I inspected the network traffic, it shows an SQL Exception. Here are the headers & the stacktrace:


Request URL:
http://192.168.0.12:8888/sdctl/contacts ... 281918517=
Request Method:
GET
{"err": "Internal Server Error
android.database.sqlite.SQLiteException:near "09": syntax error (code 1): , while compiling: SELECT _id FROM view_groups WHERE (1) AND ((title='BeachSingles '09'))
Trace:
In android.database.DatabaseUtils.readExceptionFromParcel(DatabaseUtils.java:184)
In android.database.DatabaseUtils.readExceptionFromParcel(DatabaseUtils.java:140)
In android.content.ContentProviderProxy.query(ContentProviderNative.java:366)
In android.content.ContentResolver.query(ContentResolver.java:372)
In android.content.ContentResolver.query(ContentResolver.java:315)
In com.ad.wd.common.w.a(Unknown Source)
In com.ad.wd.common.y.b(Unknown Source)
In com.ad.wd.webserver.handler.i.a(Unknown Source)
In com.ad.wd.b.f.a(Unknown Source)
In com.ad.wd.b.a.e.a(Unknown Source)
In com.ad.wd.b.a.a.run(Unknown Source)
In java.lang.Thread.run(Thread.java:856)
"}

Por favor, vocês possuem suporte em português?
Rinaldo Comisso
(Sign in or sign up to post a reply.)
page 1 / 1

Statistics

22714 posts

6180 threads

Members: 147483

Latest Member: Barney

Online: 9