NI3
11-13-2003, 12:40 PM
Vulnerable Systems:
* phpBB version 2.0.5 and prior
Immune Systems:
* phpBB version 2.0.6
phpBB has a list of registered users, when you click on a member of this list, you request data from the database.
Example:
[Only registered and activated users can see links]
This URL shows the information for the user with the uid = 2 (the uid is a number assigned to users in phpBB). The content of the 'u' variable isn't filtered for malicious contents.
An attacker could inject arbitrary SQL commands into the system's database.
Example:
[Only registered and activated users can see links]'[sqlcode]
Vendor Status:
Upgrade to version 2.0.6 of phpBB, as the version is immune to this issue
* phpBB version 2.0.5 and prior
Immune Systems:
* phpBB version 2.0.6
phpBB has a list of registered users, when you click on a member of this list, you request data from the database.
Example:
[Only registered and activated users can see links]
This URL shows the information for the user with the uid = 2 (the uid is a number assigned to users in phpBB). The content of the 'u' variable isn't filtered for malicious contents.
An attacker could inject arbitrary SQL commands into the system's database.
Example:
[Only registered and activated users can see links]'[sqlcode]
Vendor Status:
Upgrade to version 2.0.6 of phpBB, as the version is immune to this issue