header-logo
Suggest Exploit
vendor:
FubarForum
by:
Expl0its
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: FubarForum
Affected Version From: 1.6
Affected Version To: 1.6
Patch Exists: YES
Related CWE: CVE-2008-6607
CPE: a:fubarforum:fubarforum:1.6
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac
2008

FubarForum

FubarForum version 1.6 suffers from a remote SQL injection vulnerability. This vulnerability allows an attacker to inject arbitrary SQL code into the application. This can be exploited to gain access to the database and to execute arbitrary commands on the server.

Mitigation:

Upgrade to the latest version of FubarForum.
Source

Exploit-DB raw data:

                                                                                             
                                                                                                                    in the name of god

                                                                                                          ..:: jj_nanak2000@yahoo.com ::.. 


                                                                                                                      Tanx from : Expl0its 



Script : FubarForum

Version : 1.6

Dork : "Powered by FubarForum v1.6"

/forum/index.php?page=admin

# milw0rm.com [2008-12-28]

Navigation

Suggest Exploit

Services By CQR