IPBProArcade 2.5.2 GameID Parameter Remote SQL Injection Vulnerability

2014-07-01T00:00:00
ID SSV:80035
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00

Description

No description provided by source.

                                        
                                            
                                                source: http://www.securityfocus.com/bid/15205/info

A remote SQL injection vulnerability reportedly affects ipbProArcade.

The problem affects the 'gameid' parameter.

An attacker may leverage this issue to manipulate SQL query strings and potentially carry out arbitrary database queries. This may facilitate the disclosure or corruption of sensitive database information. 

http://www.example.com/forums/index.php?act=Arcade&module=favorites&gameid=|aLMaSTeR