Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: phpBB 2.0.18 SQL Query problem
From: max () jestsuper pl
Date: 15 Nov 2005 22:52:41 -0000
This isn't a security problem. Why post it to Bugtraq?

No? Are you sure? For example can you see path. 
Good script have limits for inputs like vb.

phpbb don't have.

result:
Fatal error: Allowed memory size of 8388608 bytes exhausted (tried to allocate 1746401 byt
es) in /www/2018/phpBB2/includes/functions_search.php on line 27

it is path disclosure

or can you see sql errors

good php script isn't dependant of php env.


Did you reported this to the PhpBB bugtracker?


yes. no response.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]