Home page logo

bugtraq logo Bugtraq mailing list archives

Re: Vbulletin 3.7.0 Gold >> Sql injection on faq.php
From: martin.meredith () vbulletin com
Date: 21 May 2008 09:16:20 -0000

This is invalid. the variable q is taken, split into words, and then each word is escaped for usage within the DB. 

Once again, this is invalid

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]