NASLDB: MyBB misc.php fid Parameter SQL Injection
General
ID: 19715
Name: MyBB misc.php fid Parameter SQL Injection
Summary: Checks for fid parameter SQL injection vulnerability in MyBB (2)
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS Temporal Vector: CVSS2#E:H/RL:U/RC:ND
Port: 80
Family: CGI abuses
Type: Remote
Description
The remote version of MyBB is prone to a SQL injection attack due to
its failure to sanitize user supplied input to the ‘fid’ parameter of
the ‘misc.php’ script before using it in database queries.
In addition, the newreply.php script has been reported vulnerable
to SQL injection. However, Nessus has not tested for this.
Exploiting
Exploit Available: True
Exploitability Ease: No exploit is required
Sources
CVE: CVE-2005-2888
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: 2005/09/07
Patch Release: –
Plugin Release: 2005/09/17
Plugin
Version: 1.18
Filename: mybb_fid_sql_injection2.nasl
Filesize: 3140 bytes
MD5 Hash: 0ce1ef911b6c06a7130b235ff5d26220
Identification: –
Require Keys: www/mybb
Dependencies: "mybb_detect.nasl"
Copyright: This script is Copyright© 2005-2012 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack