Re: PHP BB bug

To: Christian Jonassen <flyrev@xxxxxxxxx>
Subject: Re: PHP BB bug
From: Micheal Cottingham <webmaster@xxxxxxxxxxxxxxxxxxxxx>
Date: Sun, 18 Jul 2004 14:03:44 -0400
Cc: bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <2493bd410407180814376d96d3@xxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <257320-22004741520421698@xxxxxxxxxxxxxxxxxxx> <2493bd410407180814376d96d3@xxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.5) Gecko/20031007

As per the Project Manager of phpBB, it is an added feature. (I spoke tohim about this already.) There is no exploit or bug.


Christian Jonassen wrote:

Hmm.

Highlighting everything---what's dangerous about that?

- Christian NJ

On Thu, 15 Jul 2004 16:04:21 -0400, micheal@xxxxxxxxxxxxxxxxxxxxx
<micheal@xxxxxxxxxxxxxxxxxxxxx> wrote:

Actually, I found that it doesn't matter if an SQL query is there or not.

Example:

http://www.example.com/viewtopic.php?t=12345&highlight=bug,%20*

Something like:

http://www.example.com/viewtopic.php?t=12345&highlight=bug,*

does not work however. There doesn't _appear_ to be any exploit here,
though granted I did not check this a great deal.

--------------------------------------------------------------------
mail2web - Check your email from the web at
http://mail2web.com/ .

References:
- Re: PHP BB bug
  - From: micheal@xxxxxxxxxxxxxxxxxxxxx

Prev by Date: Re: Mac OS X stores login/Keychain/FileVault passwords on disk
Next by Date: Artmedic kleinanzeigen include vulnerability
Previous by thread: Re: PHP BB bug
Next by thread: [security bulletin] SSRT4741 rev.1 DCE for HP OpenVMS Potential RPC Buffer Overflow Attack VU#259796, VU#568148, VU#326746
Index(es):
- Date
- Thread