Categories

Applications (151)
Blogs (3)
Content Management (101)
Customer Relationship (2)
Discussion Boards (19)
E-Commerce (8)
General Purpose Directories (1)
Image Galleries (15)
Mailing Lists (1)
Tips (3)
Vulnerabilities (249)
Access Bypass (42)
Cross Site Scripting (94)
Denial Of Service (2)
File Inclusion (40)
Information Disclosure (13)
Privilege Escalation (2)
Remote Command Execution (12)
Session Hijacking (1)
SQL Injection (84)
« AutoIndex PHP Script “index.php” URL Cross-Site Scripting
Dokeos “My productions” File Upload and Cross-Site Scripting Vulnerabilities »

IceBB “X-Forwarded-For” SQL Injection

Published by David November 21st, 2007 in SQL Injection.

Application: IceBB
Affected Version: IceBB 1.x
Vendor’s URL: Application site
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code or consult with provider for proper action.

0 Responses to “IceBB “X-Forwarded-For” SQL Injection”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« AutoIndex PHP Script “index.php” URL Cross-Site Scripting
Dokeos “My productions” File Upload and Cross-Site Scripting Vulnerabilities »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional