Bugtraq mailing list archives

SQL injection in Invision Power Board v2.1.5

From: "???? ????" <mr_snake_my () hotmail com>
Date: Mon, 06 Mar 2006 22:16:35 +0000

SQL injection in Invision Power Board v2.1.5



Software: Invision Power Board

Web Site : http://forums.invisionpower.com

Versions: v2.1.5

Type: SQL Injection

Class: Remote

example :

http://www.victem.com/forum/index.php?showtopic=[anytopic]&pid=1&st=-1[sql]

Discovered by : Mr.SNAKE

GreeTz : greetz to all my freind in www.lezr.com

_________________________________________________________________

Don't just search. Find. Check out the new MSN Search!http://search.msn.click-url.com/go/onm00200636ave/direct/01/

Current thread:

SQL injection in Invision Power Board v2.1.5 ???? ???? (Mar 06)
- <Possible follow-ups>
- Re: SQL injection in Invision Power Board v2.1.5 mattmecham (Mar 07)