[42204] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

MyBB 1.0.2 SQL injection

daemon@ATHENA.MIT.EDU (addmimistrator@gmail.com)
Sun Jan 15 15:28:50 2006

Date: 13 Jan 2006 11:37:01 -0000
Message-ID: <20060113113701.6175.qmail@securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: addmimistrator@gmail.com
To: bugtraq@securityfocus.com

Hey
this is a bug report for mybb software ( forum software downloadable from http://www.mybboard.com)
bug found by imei;
bug is in usercp.php file line 830 (ver 1.0.2 latest ver) that allows SQL injection
bug is in result of poor checking for $mybb->input['threadmode'] value that can have quote and can change other fields' values and may result to full access to admin cp (by injecting usergroup field)
bug is reported to vendor and perhaps they will patched it soon.

bests
imei


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[42204] in bugtraq

MyBB 1.0.2 SQL injection

daemon@ATHENA.MIT.EDU (addmimistrator@gmail.com)Sun Jan 15 15:28:50 2006

daemon@ATHENA.MIT.EDU (addmimistrator@gmail.com)
Sun Jan 15 15:28:50 2006