SQL in PHPTB Topic Boards 2.0

almaster_at_hotmail.com
Date: 08/13/05

Next message: Uwe Hermann: "[DRUPAL-SA-2005-004] Drupal 4.6.3 / 4.5.5 fixes critical XML-RPC issue"

Previous message: Tacettin Karadeniz: "JaguarControl Activex Buffer Overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 13 Aug 2005 11:54:19 -0000
To: bugtraq@securityfocus.com

('binary' encoding is not supported, stored as-is) Class: Input Validation Error
CVE: CVE-MAP-NOMATCH
Remote: Yes
Local: Yes
Credit: aLMaSTeR HaCKeR [almaster[at]hotmail[dot]com]
{}{}{}{}{}{}{}{}{}{}{}{}
Vulnerable: Powered by PHPTB Topic Boards 2.0 ITHINK WORK IN ALL VERSION
{}{}{}{}{}{}{}{}{}{}{}{}
info
PHPTB BOARD IS VERY NICE BOARD U CAN FIND SOURCE OF FORUM IN http://www.phptb.com
{}{}{}{}{}{}{}{}{}{}{}{}
discussion
SQL IN FORUM IN
(emailvalidate.php)
{}{}{}{}{}{}{}{}{}{}{}{}
Exploit :
http://VICTIM.net/index.php?act=emailvalidate&mid=[SQl]
{}{}{}{}{}{}{}{}{}{}{}{}
CreditS
To devil_00 & abducter

Next message: Uwe Hermann: "[DRUPAL-SA-2005-004] Drupal 4.6.3 / 4.5.5 fixes critical XML-RPC issue"

Previous message: Tacettin Karadeniz: "JaguarControl Activex Buffer Overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]