BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
SQL Injection Vulnerability In IBProArcade
Dec 31 2004 01:19PM
mike bailey (mike ub3r net)
A flaw exists in the high scores module of IbProArcade which allows malicious SQL Code to be executed on the database the board & arcade use.
Demo: http://www.ibproarcade.com/index.php?act=Arcade&do=stats&gameid=104FOO
Fix this vuln by following the following directions...
open your sourc...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
A flaw exists in the high scores module of IbProArcade which allows malicious SQL Code to be executed on the database the board & arcade use.
Demo: http://www.ibproarcade.com/index.php?act=Arcade&do=stats&gameid=104FOO
Fix this vuln by following the following directions...
open your sourc...
[ more ]