| To: | bugtraq@securityfocus.com |
|---|---|
| Subject: | Re: Vbulletin 3.6.5 Sql Injection ! [misc.php] |
| From: | scott-REMOVE@vbulletin.com |
| Date: | 14 Apr 2007 14:25:02 -0000 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | bugtraq-list@securepoint.com |
| Delivered-to: | mailing list bugtraq@securityfocus.com |
| Delivered-to: | moderator for bugtraq@securityfocus.com |
| List-help: | <mailto:bugtraq-help@securityfocus.com> |
| List-id: | <bugtraq.list-id.securityfocus.com> |
| List-post: | <mailto:bugtraq@securityfocus.com> |
| List-subscribe: | <mailto:bugtraq-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:bugtraq-unsubscribe@securityfocus.com> |
| Mailing-list: | contact bugtraq-help@securityfocus.com; run by ezmlm |
There is no SQL injection being performed on that page, the proof of concept script simple grabs any 32 character string from the page, the one in question happens to be a logout hash. The logout hash is used to mitigate a CSRF. |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Vbulletin 3.6.5 Sql Injection ! [misc.php], seko |
|---|---|
| Next by Date: | VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit, meftun |
| Previous by Thread: | Vbulletin 3.6.5 Sql Injection ! [misc.php], seko |
| Next by Thread: | VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit, meftun |
| Indexes: | [Date] [Thread] [Top] [All Lists] |