Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: PHP BB bug
From: Rich Lafferty <rich () lafferty ca>
Date: Thu, 15 Jul 2004 07:04:53 -0700
On Sun, Jul 11, 2004 at 11:38:56PM -0000, sasan hezarkhani <gootiker () gmail com> wrote:



Hello,
i dont know if my foundation is acceptable or not but here we go i post it...

when u right an SQL query in the highlight section of the PHPBB u'll get all of the page highlighted
example :

forums/viewtopic.php?t=[NUMBER HERE]&highlight=Bug,SELECT * FROM $table


It's highlighting "Bug", "Select", "*", "From", and "$table". But "*"
matches everything. Try:

   http://forum.example.com/viewtopic.php?t=[num]&highlight=*

That's exactly how it is intended to work. Not only is it not a security
issue, it's not even a bug.

  -Rich

-- 
Rich Lafferty --------------+-----------------------------------------------
 Ottawa, Ontario, Canada    |  Save the Pacific Northwest Tree Octopus!
 http://www.lafferty.ca/    |    http://zapatopi.net/treeoctopus.html
rich () lafferty ca -----------+-----------------------------------------------

  By Date           By Thread  

Current thread:
  • PHP BB bug sasan hezarkhani (Jul 14)
    • Re: PHP BB bug Rich Lafferty (Jul 16)
    • <Possible follow-ups>
    • Re: PHP BB bug micheal () michealcottingham com (Jul 16)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]