CVE-2002-2176
phpBB Gender MOD 1.1.3 - SQL Injection via User Profile user_level Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-2176. PoCs published by langtuhaohoa caothuvolam.
AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in the Gender Mod for phpBB2, where a remote user can manipulate the SQL statement used to update their user profile to potentially gain administrative access. The example payload '0, user_level = 1 ' is included to demonstrate the injection point.
Description
SQL injection vulnerability in Gender MOD 1.1.3 allows remote attackers to gain administrative access via the user_level parameter in the User Profile page.
Exploits (1)
The provided text describes a SQL injection vulnerability in the Gender Mod for phpBB2, where a remote user can manipulate the SQL statement used to update their user profile to potentially gain administrative access. The example payload '0, user_level = 1 ' is included to demonstrate the injection point.