BugTraq
Back to list
|
Post reply
mybb v1.1.1(showthread.php) SQL Injection Exploit
May 09 2006 10:12AM
Breeeeh hotmail com
----------------------------------
foud by: Breeeeh
Site: http://www.alshmokh.com
Email: Breeeeh (at) hotmail (dot) com [email concealed]
----------------------------------
$query = $db->query("SELECT pid FROM ".TABLE_PREFIX."posts WHERE tid='$tid' $visible ORDER BY dateline LIMIT $start, $perpage");
while($getid = $db->fetch_array($query)) {
$pids .= "$comma'$getid[pid]'";
$comma = ",";
}
-------------------
example:
/showthread.php?...$comma=[SQL]
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
foud by: Breeeeh
Site: http://www.alshmokh.com
Email: Breeeeh (at) hotmail (dot) com [email concealed]
----------------------------------
$query = $db->query("SELECT pid FROM ".TABLE_PREFIX."posts WHERE tid='$tid' $visible ORDER BY dateline LIMIT $start, $perpage");
while($getid = $db->fetch_array($query)) {
$pids .= "$comma'$getid[pid]'";
$comma = ",";
}
-------------------
example:
/showthread.php?...$comma=[SQL]
[ reply ]