Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Re: phpBB 2.06 search.php SQL injection

from [fritz-li] Network Security [Permanent Link]
Subject: Re: Re: phpBB 2.06 search.php SQL injection
Date: 28 Mar 2006 21:57:24 -0000 
My phpBB is 2.06, however, when I implement the script to test the 
vulnerability of my site, there is no result coming out, is that means that my 
website is OK?

Besides, what do we need to change of the value of these serizable string in 
order to make it work?

What is the difference between "a:1:{s:0:"";s:4:"test";}" 
and";a:1:{i:0;s:8:"aaaaaa";}s:7:"s??

Cheers
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: Re: phpBB 2.06 search.php SQL injection, fritz-li <=
Previous by Date:  Re: Sudo tricks, Krzysztof Halasa
Next by Date:  PhxContacts <= 0.93.1 beta Multiple SQL injection & xss, dabdoub-mosikar
Previous by Thread:  [eVuln] Skull-Splitter's PHP Downloadcounter for Wallpapers SQL Injection, alex
Next by Thread:  PhxContacts <= 0.93.1 beta Multiple SQL injection & xss, dabdoub-mosikar
Indexes:  [Date] [Thread] [Top] [All Lists]