BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
mybb v1.1.1(showthread.php) SQL Injection Exploit May 09 2006 10:12AM
Breeeeh hotmail com
----------------------------------

foud by: Breeeeh

Site: http://www.alshmokh.com

Email: Breeeeh (at) hotmail (dot) com [email concealed]

----------------------------------

$query = $db->query("SELECT pid FROM ".TABLE_PREFIX."posts WHERE tid='$tid' $visible ORDER BY dateline LIMIT $start, $perpage");

whi...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus