Author

Topic: WLOX Project Has Insecure Code (Read 745 times)

member
Activity: 70
Merit: 10
May 25, 2016, 11:06:41 AM
#1
WLOX: Fully functional multi-currency Bitcoin exchange, adaptable to other cryptocurrencies. http://wlox.io/ (As described on Github)
Github URL: https://github.com/wlox/wlox

Why is the code insecure and bad? --> https://github.com/wlox/wlox-auth/blob/master/htdocs/login.php#L23

Deprecated, bad-practice, not using PDO (PHP Database Objects), not using prepared statements, SQLi!

It's nice when you can know crypto is shit without even looking past the constants.

@WLOX team, please fix?
Jump to: