UltraBB 1.17 Cross-Site Scripting Vulnerability

2013-05-11 / 2013-05-12
Credit: Am!r
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79

################################# # # ISlamic Republic Of Iran Security Team # # Www.IrIsT.Ir # ################################# # # Exploit Title : UltraBB 1.17 Cross-Site Scripting Vulnerability # # Author : IrIsT Security & Researcher Team # # Discovered By : Am!r # # Home : http://IrIsT.Ir - http://IrIsT.Ir/en # # Facebook Page : http://www.facebook.com/pages/IrIsT-Hacking-Security-Researcher-Group/488307267857573 # # Software Link : http://ultrabb.net/ # # Security Risk : High # # Version : All Version # # Tested on : GNU/Linux Ubuntu - Windows Server - win7 # # Dork : intext:"UltraBB 1.17 Copyright" # ################################# # # Expl0iTs : # # http://target.com/view_post.php?post_id=[Xss] # # # D3mo : # # http://dalXXXXrum.com/view_post.php?post_id=1623502[Xss] # # http://www.afXXXXm.com/view_post.php?post_id=203982[Xss] # # http://redXXd.us/forum/view_post.php?post_id=203982[Xss] # # http://www.clXXXXcom/forums/view_post.php?post_id=203982[Xss] # ################################# # # Greats : B3HZ4D - C0dex - Dead.Zone - TaK.FaNaR - Beni_Vanda - 0x0ptim0us # # m3hdi - F@rid - skote_vahshat - Noter - Dj.TiniVini - Nothing - z3r0 # # sajjad13and11 - Mr Zer0 - silent - dr.koderz - IR Anonymous - joker_s # # & All Members In IrIsT.Ir # ################################# # #Tnx To : PacketstormSecurity.Org - Cxsecurity.Com - 1337day.com - exploit-db.com # #################################

References:

http://www.facebook.com/pages/IrIsT-Hacking-Security-Researcher-Group/488307267857573
http://ultrabb.net/


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2021, cxsecurity.com

 

Back to Top