SillyDog701

[J-M]

Information about two new phpBB (software used by SillyDog701 Message Centre) vulnerabilities was posted to popular Bugtraq mailing list recently. From the mailing list posting:

// phpBB "charts.php" (hack) XSS and SQL-Injection //

-----------------------------------------------------------------

[~] Advisory by: LoK-Crew

[-] Exploit:

http://www . example.com/charts.php?action=vote&rate=1&id=[XSS]

http://www . example.com/charts.php?action=vote&rate=1&id=[SQL]

[-] Googledork: inurl:"charts.php" "powered by phpbb"

[+] Visit: www.LoK-Crew.de

Spaces added to sample URLs to break non-working sample addresses by me.

In fact, this is the exact information posted, there is no more details available. When visiting author's site LoK-Crew.de there was only text file including this same information
(http://gweb31.ok-webhost07.de/lok/chartsphpbb.txt ).

These exploit-type links demonstrate XSS (i.e. cross-site scripting) and SQL injection security vulnerabilities. It seems that the problem itself exists in charts.php.
Reportedly it's possible to find forums using charts.php with Google (i.e. target URL includes both text string "charts.php" and "powered by phpbb".

This text 'Powered by phpBB © 2001 - 2006 phpBB Group' is located at page footer.

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi; rv:1.8.0.3) Gecko/20060426 Firefox/1.5.0.3

[J-M]

There was a reply posted to this posting recently. New posting points that it's not phpBB vulnerability at all:

From g30rg3x gmail com


This Advisorie is incorrect its not a phpBB security flaw, its a MOD of phpBB called "Charts MOD".

That allows users to vote, rate music and related stuff..

url: http://www.phpbb2.de/dload.php?action=file&file_id=670

so please review and correct your advisorie...

Antony, are you familiar with this Charts MOD mentioned?

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi; rv:1.8.0.3) Gecko/20060426 Firefox/1.5.0.3