[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

212cafeBoard Sql injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: 212cafeBoard Sql injection
From: "Lopez Bran" <wenzel.vete@xxxxxxxxx>
Date: Tue, 4 Sep 2007 10:34:12 -0300

Hello

Vulnerable :
-----------
212cafeBoard

Version:
-------
6.30 Beta

Vendor:
------
http://www.212cafe.com


Description:
-----------
Sql injection 212cafeBoard v6.30 Beta :


http://site/Board/read.php?id=[INJECT SQL CODE]

Path:
-----
I try to contact the developer but never receiver a response.

Regards,
Lopez Bran Digrap



-- 
Saludos,
Lopez Bran Digrap

Prev by Date: Re: [Sec] Re: [Full-disclosure] n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory
Next by Date: Wireshark DNP3 Dissector Infinite Loop Vulnerability
Previous by thread: [security bulletin] HPSBUX02156 SSRT061236 rev.3 - HP-UX Running Thunderbird, Remote Unauthorized Access or Elevation of Privileges or Denial of Service (DoS)
Next by thread: Wireshark DNP3 Dissector Infinite Loop Vulnerability
Index(es):
- Date
- Thread