Description: Janek Vind "waraxe" has reported a vulnerability in Phorum, which can be exploited by malicious people to conduct SQL injection attacks.
Input passed to the "forum_ids[]" parameter in "search.php" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
Successful exploitation requires that "register_globals" is enabled.
The vulnerability has been reported in versions 5.0.0.alpha through 5.0.20.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
