ThWboard Support-Forum (Archiv)

Ort: / Boardübersicht / Probleme und Fragen / 3 Beta 2.84 -- SQL Injection & Cross Site Scripting

Seite 1 von 1

fingersD schrieb am 21.04.2006 um 01:19 Uhr

Just Got These reports --- not SURE of Accuracy ---

-------SQL Injection----------
Discovered by: Qex
Date: 19 April 2006
====================

/showtopic.php?threadid=1&pagenum=[SQL]

---------Cross Site Scripting---------
foud by:::.CrAzY CrAcKeR & Breeeh.:::
Site: http://www.alshmokh.com
nono225-mHOn-rageh-port-Lover hacker
#################################

-----example:

http://target.com/forum/index.php?navpath=[XSS]

theDon schrieb am 21.04.2006 um 02:12 Uhr

The 2.84 release is definitely not vulnerable to this attack. This might however apply to older releases (most likely pre-2.82).

fingersD schrieb am 21.04.2006 um 02:45 Uhr

@theDon
thanx!
Dave

Seite 1 von 1