MyBB editpost.php SQL Injection

Type packetstorm
Reporter Joshua Rogers
Modified 2013-01-01T00:00:00


                                            `MyBB <1.6.9 is vulnerable to Stored, Error based, SQL Injection.  
Vulnerable code:  
Line 398  
$posthash_query = "posthash='{$posthash}' OR ";  
It can be done by using Tamper Data(Or Live HTTP Headers), and when  
submitting a post, edit the 'posthash' POST parameter to your payload,  
submitting, then going to edit your post.  
Small "HOWTO" in picture:  
This bug was not found by me, but afaik, I am the first one to release it.  
*Joshua Rogers* - Retro Game Collector && IT Security Specialist  
gpg pubkey <>