[42190] in bugtraq
MyBB 1.0.2 SQL injection in usercp.php
daemon@ATHENA.MIT.EDU (addmimistrator@gmail.com)
Sat Jan 14 15:27:57 2006
Date: 14 Jan 2006 19:14:46 -0000
Message-ID: <20060114191446.16483.qmail@securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: addmimistrator@gmail.com
To: bugtraq@securityfocus.com
this is a bug report for MyBB 1.0.2(latest version)
bug found by imei
there is a security bug in usercp.php line 830 that Allows SQL Injection and can result to full access to admin cp.
bug is in result of poor checking of $mybb->input['threadmode'] value against all other values in usercp.php file line:830 ====>
"threadmode" => $mybb->input['threadmode'],
bug reported to vendors some days ago
bests.
imei
