====================================================
MyPage plugin (phpBB) SQL Injection (All versions)
====================================================
====================================================
Improve your hacking knowledges !
====================================================
====================================================
VISIT http://HackSociety.net !
====================================================
# Exploit Title: SQL Injection on the plugin phpBB plugin MyPage
# Google Dork: inurl:"mypage.php?id="
# Date: 06/12/2011
# Author: CrazyMouse (from HackSociety.net)
# Version: 0.2.3 (this is the last avaliable version, older versions are also vulnerable)
# Tested on: Windows 7 x64 (Firefox)
====================================================
VISIT http://HackSociety.net !
====================================================
[~] Exploit:
http://localhost/forum/
[~] http://localhost/forum/mypage.php?id= (SQL)
[~] Example:
====================================================
# Thanks to
Crassus
====================================================
====================================================
VISIT http://HackSociety.net !
====================================================