MyBB usercp.php SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1194380 漏洞类型 SQL注入
发布时间 2006-06-27 更新时间 2006-06-27
CVE编号 CVE-2006-3243 CNNVD-ID CNNVD-200606-514
漏洞平台 N/A CVSS评分 7.5
|漏洞来源
https://www.securityfocus.com/bid/83776
https://cxsecurity.com/issue/WLB-2006060151
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200606-514
|漏洞详情
MyBB(MyBulletinBoard)1.0至1.1.3的usercp.php中的SQL注入漏洞。远程攻击者通过showcodebuttons参数执行任意SQL命令。
|漏洞EXP
ORIGINAL ADVISORY:

http://myimei.com/security/2006-06-21/mybb113option-update-for-code-butt
onssql-injection-admin-access.html

http://www.kapda.ir/page-advisory.html

??????-Summary?????-

Software: MyBB

Sowtware?s Web Site: http://www.mybboard.com

Versions: 1.1.3

Class: Remote

Status: Patched

Exploit: Available

Discovered by: imei addmimistrator

Risk Level: very high

??????Description?????

There is a security bug in MyBB 1.1.3 software (latest version fully patched) file usercp.php that allows attacker performe a SQLINJECTION attack.

READ ORIGINAL ADVISORY FOR MORE DETAILS.
|受影响的产品
MyBulletinBoard MyBulletinBoard 1.1.3 MyBulletinBoard MyBulletinBoard 1.1.2 MyBulletinBoard MyBulletinBoard 1.1.1 MyBulletinBoard MyBulletinBoard 1.0.4 MyBulletinBoard MyBulletinBoard 1.0
|参考资料

来源:VUPEN
名称:ADV-2006-2511
链接:http://www.frsirt.com/english/advisories/2006/2511
来源:SECUNIA
名称:20795
链接:http://secunia.com/advisories/20795
来源:XF
名称:mybb-showcodebuttons-sql-injection(27410)
链接:http://xforce.iss.net/xforce/xfdb/27410
来源:BUGTRAQ
名称:20060622[KAPDA]MyBB1.1.3~Optionupdateforcodebuttons~SqlInjectionAdminAccess
链接:http://www.securityfocus.com/archive/1/438209
来源:MISC
链接:http://myimei.com/security/2006-06-21/mybb113option-update-for-code-buttonssql-injection-admin-access.html
来源:community.mybboard.net
链接:http://community.mybboard.net/showthread.php?tid=9955
来源:SREASON
名称:1147
链接:http://securityreason.com/securityalert/1147