Bugtraq mailing list archives

Re: SQL injection in Invision Power Board v2.1.5

From: mattmecham () gmail com
Date: 7 Mar 2006 10:07:28 -0000

I've tested this and cannot get SQL to execute. The "s" parameter is run past PHP's intval() which knocks off anything 
that's not a number.

Can you explain how you got this to work?

Current thread:

SQL injection in Invision Power Board v2.1.5 ???? ???? (Mar 06)
- <Possible follow-ups>
- Re: SQL injection in Invision Power Board v2.1.5 mattmecham (Mar 07)