Signature Detail

HTTP: phpBB search_id SQL Injection

This signature detects attempts to exploit a known vulnerability in phpBB, an open-source bulletin board package. The search_id parameter in phpBB is vulnerable to SQL injection. Attackers can query private data (such as hashed passwords) then embed the password in a cookie to gain adminstrative access to the Web site.

Extended Description

It has been reported that phpBB may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database. phpBB version 2.06 has been prone to this issue, however other versions may be affected as well.

Affected Products

• phpBB Group phpBB 2.0.6

References

• BugTraq: 9122
• CVE: CVE-2003-1216
• URL: http://www.securityfocus.com/archive/1/345872/2003-11-22/2003-11-28/2
• URL: http://xforce.iss.net/xforce/xfdb/13867