Computer Security

Security Advisory: [KAPDA]MyBB 1.1.7 ~ admin/global.php ~ XSS Attack
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [ECHO_ADV_46$2006] ExBB v1.9.1 (exbb[home_path])
Multiple Remote File Inclusion

  [SA21659] CubeCart Multiple Vulnerabilities

  phpAtm <= 1.21 (include_location
) Remote File Include Vulnerabilities

  YACS CMS <= 6.6.1 context[path_to_root]
Remote File Include Vuln

From:imei <addmimistrator_(at)_gmail.com>
Date:31.08.2006
Subject:[KAPDA]MyBB 1.1.7 ~ admin/global.php ~ XSS Attack

ORIGINAL ADVISORY:
http://myimei.com/security/2006-08-17/mybb-117-adminglobalphp-xss-attack.html
http://kapda.ir/page-advisory.html

**************
——————-Summary—————-
Software: MyBB
Sowtware’s Web Site: http://www.mybboard.com
Versions: 1.1.7
Class: Remote
Status: Unpatched
Exploit: Available
Solution: Available
Discovered by: imei addmimistrator
Risk Level: Medium
—————–Description—————
There is some security bug in MyBB 1.1.7 software (latest version fully patched) file admin/global.php that allows attacker performe an XSS attack.

FOR MORE DETAIL VISIT ORIGINAL ADVISORY
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru