BugTraq
mybb v1.1.1(showthread.php) SQL Injection Exploit May 09 2006 10:12AM
Breeeeh hotmail com
----------------------------------

foud by: Breeeeh

Site: http://www.alshmokh.com

Email: Breeeeh (at) hotmail (dot) com [email concealed]

----------------------------------

$query = $db->query("SELECT pid FROM ".TABLE_PREFIX."posts WHERE tid='$tid' $visible ORDER BY dateline LIMIT $start, $perpage");

while($getid = $db->fetch_array($query)) {

$pids .= "$comma'$getid[pid]'";

$comma = ",";

}

-------------------

example:

/showthread.php?...$comma=[SQL]

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus