Re: SQL-injections in Invision Power Board v2.0.1

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: SQL-injections in Invision Power Board v2.0.1
From: "Steven M. Christey" <coley@xxxxxxxxx>
Date: Wed, 27 Apr 2005 01:43:58 -0400 (EDT)
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

This issue appears to be a rediscovery of a Bugtraq post by Alexander
Anisimov on November 18, 2004:

  [MaxPatrol] SQL-injection in Invision Power Board 2.x
  http://www.securityfocus.com/archive/1/381503

1) Both inject the SQL into the "qpid" parameter

2) Both deal with the "post" action ("act=Post") in index.php

3) The vendor fixed the issue as identified in the following forum
   post:

    http://forums.invisionpower.com/index.php?showtopic=154916


- Steve

Prev by Date: [ GLSA 200504-27 ] xine-lib: Two heap overflow vulnerabilities
Next by Date: [SECURITY] [DSA 717-1] New lsh packages fix several vulnerabilities
Previous by thread: SQL-injections in Invision Power Board v2.0.1
Next by thread: [Hackers Center Security Group] Sqwebmail Http Splitting Vulnerability
Index(es):
- Date
- Thread