Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Re: Vbulletin 3.7.0 Gold >> Sql injection on faq.php

Re: Vbulletin 3.7.0 Gold >> Sql injection on faq.php

From: <skyline_at_yahoo.com>
Date: 27 May 2008 04:10:39 -0000

('binary' encoding is not supported, stored as-is) This is a bogus issue. There is no SQL injection.

It does cause a DB error, but it's not injection related.

Read the code properly.

$vbulletin->GPC['q'] gets split up into an array. ($search)
This array then goes through a foreach loop ($search AS $word)
Each $word is escaped before being put into the query ($whereText[] = "text LIKE('%" . $db->escape_string_like($word) . "%')";)
Received on May 27 2008

This message: [ Message body ]
Next message: security-alert_at_hp.com: "[security bulletin] HPSBUX02335 SSRT071454 rev.2 - HP-UX Running useradd(1M), Local Unauthorized Access"
Previous message: Tomi Tuominen: "T2'08: Call for Papers 2008 (Helsinki / Finland)"
Maybe in reply to: a.jasbi_at_yahoo.com: "Vbulletin 3.7.0 Gold >> Sql injection on faq.php"
Next in thread: andy.huang_at_vbulletin.com: "Re: Re: Vbulletin 3.7.0 Gold >> Sql injection on faq.php"
Maybe reply: andy.huang_at_vbulletin.com: "Re: Re: Vbulletin 3.7.0 Gold >> Sql injection on faq.php"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]