 |
|
- Readme First! -
Read and follow the rules, otherwise your posts will be closed |
|
|
|
|
|
There are currently, 183 guest(s) and 0 member(s) that are online.
You are Anonymous user. You can register for free by clicking here |
|
|
|
|
|
phpBB SQL Injection Vulnerability |
|
 manunkind1 writes "A vulnerability has been reported in phpBB, which can be exploited by
malicious people to inject arbitrary SQL code.
The problem is that the
"search_id" parameter in "search.php" isn't verified properly, allowing
malicious people to supply characters, which can be used to manipulate the SQL
query.
The vulnerability has been reported in version 2.06. Prior
versions may also be affected.
Solution:
A solution has been posted at the phpBB site:
http://www.phpbb.com/phpBB/viewtopic.php?t=153818"
|
|
Posted on Friday, November 28 @ 16:18:41 CET by Zhen-Xjell |
|
|
|
|
| |
|
Average Score: 5
Votes: 1
|
|
|
|
|
|
|
| | The comments are owned by the poster. We aren't responsible for their content. |
| | | | |
| No Comments Allowed for Anonymous, please register | | | | | |
|
