I have an Reference Install of SP4 (binaries are 6.5.0_348145)
and a SCORM course created entirely in Flash. However, it is failing to
execute properly and the log files are indicating a sql injection error (see
below).
2008-11-20 19:53:46 [0xfec] (1) Possible SQL injection
attack detected for the following SQL statement(DECLARE
longVar0
long default
'({student_data:{mastery_score:"70"}, …})';
BEGIN
UPDATE DRAICCOptionalDataElement SET optional =
longVar0
WHERE learningActivityTranscriptID = 4401 AND systemID
= 'A1';
END;)
2008-11-20 19:53:46 [0xfec] (12) Script log
lib/dbobject.jsm(341):catcher.sendResponseSCORM=(error=-1&error_text=Javascript%20exception%3A%20lib%2Fdatabase.js(147)%3A%20Unknown%20Error%20(Invalid%20SQL%20detected)&version=3.4&aicc_data=)
I know this is related to the change that was made in hotfix
11840 to prevent SQL injection by stopping any Oracle code that had semi colons
in it from executing against the database, but this is the first SCORM course I’ve
seen fail under this environment.
Has anyone seen this before with SCORM courses?
Thanks,
Robert
__._,_.___
Reply (via web post)
|
Start a new topic
| Links
| Database
| Polls
| Members
| Calendar
MARKETPLACE
From kitchen basics to easy recipes - join the Group from Kraft Foods
Change settings via the Web (Yahoo! ID required)
Change settings via email: Switch delivery to Daily Digest | Switch format to Traditional
Visit Your Group
|
Yahoo! Groups Terms of Use |
Unsubscribe
Recent Activity
Yahoo! Finance
It's Now Personal
Guides, news,
advice & more.
New web site?
Drive traffic now.
Get your business
on Yahoo! search.
Health Groups
for people over 40
Join people who are
staying in shape.
.
__,_._,___