Help
-
Search
-
Member List
-
Calendar
Full Version:
Broadboard Instant Asp Message Board
GovernmentSecurity.org
>
The Archives
>
Exploit Articles
qcred11
Sep 28 2004, 02:14 AM
QUOTE
URL:
http://www.broadboard.com/
1. software does not properly validate user-supplied input in the 'keywords'
parameter in search.asp:
http://broadboard/forum/search.asp?archive...ion=1&keywords=
['SQL
code]&method=1&method=1&body=1&subject=1&board=1&results=1
2. software does not properly validate user-supplied input in the 'handle'
parameter in profile.asp:
http://broadboard/forum/profile.asp?handle=
['SQL code]
3. software does not properly validate user-supplied input in the
'txtUserHandle' parameter in reg2.asp:
POST /forum/reg2.asp HTTP/1.1
Host: broadboard
Content-Type: application/x-www-form-urlencoded
Content-Length: 121
txtNameFirst=1&txtNameLast=1&txtUserEmail=sales_at_maxpatrol.com&txtUserHandle=
['SQL code]&txtUserPwd=1&txtUserCPwd=1&cmdRegister=1
4. software does not properly validate user-supplied input in the
'txtUserEmail' parameter in forgot.asp:
POST /forum/forgot.asp HTTP/1.1
Host: broadboard
Content-Type: application/x-www-form-urlencoded
Content-Length: 24
txtUserEmail=['SQL code]&cmdSend=1
Source:
http://seclists.org/lists/bugtraq/2004/Sep/0359.html
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here
.
Invision Power Board © 2001-2005
Invision Power Services, Inc.
