Yabb SE SQL Injection Vulnerability
Date: Monday, January 26 2004
Topic: Security

YaBB SE is a PHP/MySQL port of a older forum software based on Perl. An SQL injection vulnerability allows a remote attacker to execute malicious SQL statements on the database remotely.

The file SSI.php has a number of functions to return information about the status of the forum (statistics). Functions 'welcome' and 'recentTopics' are vulnerable to SQL injection because the parameter ID_MEMBER is not properly checked.

An exploit is available but the YaBB SE team relased a patch. You should upgrade to 1.5.5 to be safe.

This is probably the last version of this forum. The team start working on a new forum software called SMF.

You can find the patch on YaBB SE website: http://www.yabbse.org/





This article comes from osforge.com
http://www.osforge.com

The URL for this story is:
http://www.osforge.com/news/001282.html