info
discussion
exploit
solution
references
phpBB2 Gender Mod Remote SQL Injection Vulnerability
langtuhaohoa caothuvolam <trungonly@yahoo.com> has suggested submitting the following value for the 'gender' CGI parameter:
"0, user_level = 1 "
Privacy Statement
Copyright 2010, SecurityFocus
