API tools faq
paste
Advertisement
Scorz-Root

Phorum 5.0.11 - 'Read.php' SQL Injection

Scorz-Root
Dec 15th, 2017
1,038
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.58 KB | None | 0 0
raw download clone embed print report
  1. source: http://www.securityfocus.com/bid/14095/info
  2.  
  3. Phoroum is prone to SQL injection attacks. Insufficient sanitization of user input may allow a malicious user to manipulate the structure and logic of database queries.
  4.  
  5. Successful exploitation could allow the attacker to compromise security properties of the application and the database. Possible consequences include unauthorized access to the application and database.
  6.  
  7. This issue has been reported to exist in Phorum 5.0.11. Earlier versions may also be affected.
  8.  
  9. http://www.example.com/read.php?1,[MALICIOUS_SQL_CODE],newer
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!