Possible phpBB <=2.0.11 bug or sql injection?

jtm297_at_optonline.net
Date: 02/17/05

  • Next message: Martin Schulze: "[SECURITY] [DSA 685-1] New emacs21 packages fix arbitrary code execution" 
    Date: 17 Feb 2005 09:54:57 -0000
To: bugtraq@securityfocus.com
    ('binary' encoding is not supported, stored as-is)

    Since phpbb's website says not to post it on their forum, I guess I'll post my findings here.

    http://www.phpbb.com/phpBB/search.php?search_author=\*\'fnfnfffffa,'\*\*\cdf

    or

    http://www.phpbb.com/phpBB/search.php?search_author=\*\*\*\*\*\*\*\*\*\

    It seems it has something to do with the the \'s *'s and length. I am not sure if this is a big bug but I decided to try that after looking at search.php
    ************************************************

            $search_author = str_replace('*', '%', trim($search_author));
                                    
                                    $sql = "SELECT user_id
                                            FROM " . USERS_TABLE . "
                                            WHERE username LIKE '" . str_replace("\'", "''", $search_author) . "'";
                                    if ( !($result = $db->sql_query($sql)) )
                                    {
                                            message_die(GENERAL_ERROR, "Couldn't obtain list of matching users (searching for: $search_author)", "", __LINE__, __FILE__, $sql);
                                    }
    *********************************************

    Not sure if this is anything, but it seems to be running in the sql and erroring.

    Thanks for your time,
    jtm

  • Next message: Martin Schulze: "[SECURITY] [DSA 685-1] New emacs21 packages fix arbitrary code execution"

    Relevant Pages

    • Re: Why would a websites encoding default to Cyrillic?
      ... The website is not hosted in Russia either. ... > In their HTML all of the encoding is set to Iso-8559-1 which is the USA ... As you mentioned a forum, ...
      (alt.html)
    • Re: Why would a websites encoding default to Cyrillic?
      ... > There is a website I frequent both their forum and main page encoding is ... There is no encoding with the name "Cyrillic". ... Russian, in Russia and elsewhere. ... > The website is not hosted in Russia either. ...
      (alt.html)
    • Why would a websites encoding default to Cyrillic?
      ... There is a website I frequent both their forum and main page encoding is ... The website is not hosted in Russia either. ... In their HTML all of the encoding is set to Iso-8559-1 which is the USA ...
      (alt.html)
    • Re: Frugal Machinist Web Site
      ... I reinstalled the website and made a few changes to eliminate my email ... I got into a pissing contest with a real bitch in rec.ponds forum, ... she has a loyal following of sock puppets and other typical USENET ... jumps from free usenet news server to server to keep from getting ...
      (rec.crafts.metalworking)
    • Re: Text Editing Problem
      ... the website, I fixed it. ... so we still don't even know what characters you are talking ... to think that WYSIWYG is the editor's name. ... "Sounds like an encoding issue. ...
      (alt.html)
    • Quantcast