OBS new SQL injection

InVaDeR359

Active Member
Joined
May 29, 2017
Messages
160
Reaction score
124
Points
72
Location
Error 403
Website
127.0.0.1
Somebody came into my stream last night on Twitch and made my stream shut down for three times. It caused my Software to crash ( StreamLabs OBS latest version ) and got my game crashed afterwards ( Rainbow Six Siege ). I'm running Windows 10 64-bit.
I have never had this problem on any of my streams until today.
I couldn't see what he was writing in the chat but other people can
here is a random screen taken by one of my viewers of what he's actually written:
1918

Do you guys know anything about this? I think it's a new exploit in their software. But how am I the only one having this issue? How can I protect my self from this SQL injection and why the well-known streamers didn't get attacked as well?
 

kalle

high minded
VIP
Contributor
Joined
Oct 28, 2015
Messages
401
Reaction score
244
Points
118
Location
Bosnia and Herzegovina
Website
github.com
Somebody came into my stream last night on Twitch and made my stream shut down for three times. It caused my Software to crash ( StreamLabs OBS latest version ) and got my game crashed afterwards ( Rainbow Six Siege ). I'm running Windows 10 64-bit.
I have never had this problem on any of my streams until today.
I couldn't see what he was writing in the chat but other people can
here is a random screen taken by one of my viewers of what he's actually written:
View attachment 1918

Do you guys know anything about this? I think it's a new exploit in their software. But how am I the only one having this issue? How can I protect my self from this SQL injection and why the well-known streamers didn't get attacked as well?
Cant really belive that this dumb looking sql querys are reason to shut down the stream.
 

Asphyxia

Server Monkey
Administrator
Joined
Apr 25, 2015
Messages
1,512
Reaction score
2,011
Points
287
Age
26
Location
North America
dumb looking sql querys are reason to shut down the stream.
That is the funniest vulnerability in the damn world. I am sorry this happened to you but they really should secure their software better.

Code:
sql_off
select * from twitch
;
I am curious if this really works, slightly tempted to give this a try but do not want to harm anyone. What version of OBS (aside from latest) you using @InVaDeR359 I may setup my own stream to test.

Kid's name is shown here I think? https://www.instagram.com/ali.jbara97/?hl=en

Snap : alijbara
Theinfinix500, his Twitch profile is https://bit.ly/2JOzg5W

ali.jbara97

Atttttaaaaaccckkk lol xD
 
Last edited:

OvO

CipherSpeak Developer
Joined
Jan 23, 2018
Messages
32
Reaction score
10
Points
26
I posted all sql commands but it dosent work what did i wrong or already fixed ? and Wtf xd
 

FarisDev

L oryh brx
Contributor
Joined
Jun 9, 2016
Messages
273
Reaction score
105
Points
107
Age
29
Location
Saudi Arabia
Maybe he want to make him self the unbelievable hacker, so he posted a SQL commands. And actually its not a SQL Vulnerability.
 

Top