Create an account

Very important

  • To access the important data of the forums, you must be active in each forum and especially in the leaks and database leaks section, send data and after sending the data and activity, data and important content will be opened and visible for you.
  • You will only see chat messages from people who are at or below your level.
  • More than 500,000 database leaks and millions of account leaks are waiting for you, so access and view with more activity.
  • Many important data are inactive and inaccessible for you, so open them with activity. (This will be done automatically)

0Day Forums Coding CMS MyBB Why is this SQL injection harmful?

Thread Rating:
  • 342 Vote(s) - 3.52 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Options
Why is this SQL injection harmful?

Offline phantasmallyqplyjkvpfz


Valued member
***
Valued member
Posts: 0
Threads: 0
Joined: Jan 2019
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#1
07-26-2023, 11:22 PM
I have a mybb forum that I have found is vulnerable to a SQL injection. I have performed said SQL injection on the site, but I don't understand why this data is sensitive. For security reasons, I have not disclosed my website, but an end ample found in the internet is pictured below. Can someone explain to me why this data should not be publically known?

![enter image description here][1]


[1]:

[To see links please register here]

Reply

Offline tarpon356101


Member
*
Member
Posts: 0
Threads: 0
Joined: Sep 2018
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#2
07-26-2023, 11:49 PM
Your data may not be sensitive, but your site would be VERY sensitive to someone issuing a series of DROP TABLE commands through SQL injection. You could very easily find your site nothing but error messages no matter what page you visited.

And if you didn't have a recent backup (you *DO* do frequent backups, right??), your site would be pretty much dead and you would have to start from scratch.
Reply

Offline Mrdhansukhoknafii


Valued member
***
Valued member
Posts: 0
Threads: 0
Joined: Jul 2021
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#3
07-27-2023, 12:18 AM
This is a simple PHP warning and no SQL Injecetion.
Reply

« Next Oldest
Next Newest »


Forum Jump:


Users browsing this thread:
1 Guest(s)

©0Day  2016 - 2023 | All Rights Reserved.  Made with    for the community. Connected through