MyBulletinBoard Search.PHP SQL Injection Vulnerability

No exploit is required.

The following proof of concept URI is available:
http://www.example.com/search.php?action=finduser&uid=-1'[SQL]

The discoverer of this vulnerability has supplied the following exploit code sufficient to retrieve the password hash of the administrator:


 

Privacy Statement
Copyright 2010, SecurityFocus