Current time: 07-25-2014, 12:30 PM Hello There, Guest! (LoginRegister)


Post Reply 
 
Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Amir reported SQL-injection in 1.6.8
06-08-2012, 07:24 AM
Post: #1
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago Amir reported SQL-injection in 1.6.8
Hello,

I noticed security vulnerability report in mailing list: http://seclists.org/bugtraq/2012/Jun/29

I tried to verify this without success (usual scenario with Amir). Could someone verify this is not valid issue?
Find all posts by this user
Quote this message in a reply
06-08-2012, 09:43 AM
Post: #2
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
This is not a valid issue. warning_level is not a valid action within member.php.
Find all posts by this user
Quote this message in a reply
06-08-2012, 09:56 AM
Post: #3
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
Thank you fast response.
Find all posts by this user
Quote this message in a reply
06-09-2012, 04:31 AM
Post: #4
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
i have a question.
did anyone reports bugs from mybb a few days ago?
mr fgeek published one of them and i want to publish another one.
im not sure, please check http://packetstormsecurity.org/files/113...ction.html and tell me is this a bug? or not?
Find all posts by this user
Quote this message in a reply
06-09-2012, 04:34 AM
Post: #5
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
Again, it's an invalid report. It's a vulnerability within a plugin not within MyBB.
Visit this user's website Find all posts by this user
Quote this message in a reply
06-09-2012, 04:48 AM
Post: #6
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
What plugin is this bug?

I have a site for a demo http://www.mihanhack.com/forums/member.p...file&uid=9 '

The full explanation is unraveling, ohh Please do harm Dhdyd
Find all posts by this user
Quote this message in a reply
06-09-2012, 04:50 AM
Post: #7
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
I believe it's this plugin: http://mybbsource.com/thread-3991.html
Visit this user's website Find all posts by this user
Quote this message in a reply
06-09-2012, 04:56 AM
Post: #8
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
Are you sure this is really an inconvenience unraveling, ohh?

This is because I http://www.mihanhack.com/forums/member.p...file&uid=9 '

And until now has not been hacked and someone has released a bug that wants to hurt us.

I did not bug me, bug Czech officer may explain the better you get
Find all posts by this user
Quote this message in a reply
06-09-2012, 08:45 AM
Post: #9
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
These vulnerabilities do not affect 1.6.8, unless you have those plugins installed.
Find all posts by this user
Quote this message in a reply
06-09-2012, 10:39 AM
Post: #10
Solved: 2 Years, 1 Month, 2 Weeks, 2 Days, 2 Hours, 38 Minutes, 51 Seconds ago RE: Amir reported SQL-injection in 1.6.8
(06-09-2012 04:56 AM)s3ri0s Wrote:  This is because I http://www.mihanhack.com/forums/member.p...file&uid=9 '

If you look at the SQL error that spits out:
Code:
SELECT * FROM mybb_adv_ratings WHERE fuid='9'' AND uid='0'

It should be immediately obvious that mybb_adv_ratings is not a default MyBB table.

I already contacted the author of the Advanced Profile plugin via PM on MyBB source, but seeing as it's not hosted on the mods site we can't take it down. I'm also not sure if the vulnerability is in the latest version of the plugin.

Another hipster dev blog.
Find all posts by this user
Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 1 Guest(s)

Contact Us | MyBB | Return to Top | Return to Content | Lite (Archive) Mode | RSS Syndication