Description - Cookie Auth Bypass, SQL Injections, XSS in 427BB
Multiple Vulnerabilities found in 427BB script.
- Exploit
- Available
- Solution
- Not available - check vendor's website
427BB has multiple vulnerabilities.
1. Authentication bypass using modified cookie values.
Vulnerabe scripts: login.php getvars.php
To authorize any logged-in user forum scripts checks only three cookie values:
- username
- authenticated
- usertype
Forum dont make password comparison.
2. 427BB has Multiple SQL Injection Vulnerabilities.
For example:
Vulnerabe script: showthread.php
Variable $ForumID isn't properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code
3. Arbitrary script code insertion is possible when posting a message containing URL.
Vulnerable Script: posts.php
Condition: visitor needs to click this link
Order Source Code Audit made by eVuln team
Prevent hacker attacks by source code analysis of your website made by our team.The order will be done by experts in web security.