ThWboard showtopic.php pagenum Variable SQL Injection

2006-04-19T05:59:29
ID OSVDB:27435
Type osvdb
Reporter OSVDB
Modified 2006-04-19T05:59:29

Description

Manual Testing Notes

http://[target]/showtopic.php?threadid=1&pagenum=[SQL]

References:

Vendor URL: http://www.thwboard.de/ Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0180.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-04/0385.html CVE-2006-1926 Bugtraq ID: 17606