SQL IN Open Bulletin Board

ABDUCTER_MINDS_at_YAHOO.COM
Date: 08/08/05

Next message: ICool: "Re: [NOBYTES.COM: #8] Naxtor Shopping Cart 1.0 - Information Disclosure & Possible SQL Injection"

Previous message: Steven M. Christey: "Re: SQL IN PortailPHP"
Next in thread: security curmudgeon: "Re: SQL IN Open Bulletin Board"
Reply: security curmudgeon: "Re: SQL IN Open Bulletin Board"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 8 Aug 2005 11:03:14 -0000
To: bugtraq@securityfocus.com

('binary' encoding is not supported, stored as-is) Class: Input Validation Error
Remote: Yes
Local: Yes
Credit: ABDUCTER ----> ABDUCTER_MINDS@YAHOO.COM {OR} ABDUCTER_MINDS76@HOTMAIL.COM
Vulnerable: Powered by Open Bulletin Board ALL VERSION
******************************************************
info :- openbb is APOPULAR FORUM HAVE MANY VERSION U CAN FIND SOURCE OF FORUM IN
http://www.openbb.com/
******************************************************
discussion :- there is many sql in
                              (board.php) as wwww.victim.com/openbb/board.php?FID=[sql]
                              (read.php) as www.victim.com/openbb/read.php?TID=[sql]
                              (member.php) as www.victim.com/openbb/member.php?action=profile&UID=[sql]

******************************************************
CREDITS :-
          FOR ALL ARAB [EGYPT]
          WWW.S4A.CC
          TO MY LOVE (N0N0)
          DEVIL_00

Next message: ICool: "Re: [NOBYTES.COM: #8] Naxtor Shopping Cart 1.0 - Information Disclosure & Possible SQL Injection"

Previous message: Steven M. Christey: "Re: SQL IN PortailPHP"
Next in thread: security curmudgeon: "Re: SQL IN Open Bulletin Board"
Reply: security curmudgeon: "Re: SQL IN Open Bulletin Board"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]