212cafeBoard read.php id Variable SQL Injection

2007-09-04T00:00:00
ID OSVDB:38334
Type osvdb
Reporter OSVDB
Modified 2007-09-04T00:00:00

Description

Manual Testing Notes

http://[target]/Board/read.php?id=[SQL]

References:

Other Advisory URL: http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065581.html Other Advisory URL: http://securityreason.com/securityalert/3099 ISS X-Force ID: 36403 CVE-2007-4719 Bugtraq ID: 25526