Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:16629
HistoryApr 09, 2007 - 12:00 a.m.

UBB.threads (<= 6.1.1) SQL Injection Vulnerability

2007-04-0900:00:00
vulners.com
19

UBB.threads SQL Injection Vulnerability

The variable 'C' in UBB.threads is susceptible to SQL injection.

Vulnerability: http://target.com/ubbthreads.php?Cat=cat&C='
Vulnerable: UBB.threads <= 6.1.1
Google d0rk: allintitle:"Forums powered by UBB.threads"

John Martinelli
[email protected]
http://john-martinelli.com

april 8th, 2007