Computer Security

Security Advisory: VBulletin AdminCP Index.PHP Multiple Cross-Site Scripting Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  SMA-DB <= 0.3.9 (settings.
php) Remote File Inclusion Vulnerability

  WebBuilder <= 2.0 Remote File Include Vulnerability

  GeekLog <= 2. (BaseView.
php) Remote File Include Vulnerabilities

  GeekLog <= 2. (BaseView.
php) Remote File Include Vulnerabilities

From:Hackers Center Security Group <DoZ_(at)_hackerscenter.com>
Date:07.02.2007
Subject:VBulletin AdminCP Index.PHP Multiple Cross-Site Scripting Vulnerability

VBulletin AdminCP Index.PHP Multiple Cross-Site Scripting Vulnerability



vBulletin is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data.

An attacker could exploit this vulnerability to have arbitrary script code execute in the context of the affected site. This may allow an attacker to steal cookie-based authentication credentials and to launch other attacks.



Hackers Center Security Group (http://www.hackerscenter.com)
Credit: Doz


Remote: No
Local: Yes
Class:  Input Validation Error


Vendor: http://www.vbulletin.com/
Vulnerable:: Admin Control Panel (vBulletin 3.6.4 )


Attackers can exploit these issues via a web client.


These Fucntions on Index.php Contail XSS.

- User Group Manager
- User Rank Manager
- User Title Manager
- BB Code Manager
- Attachment Manager
- Calendar Manager
- Forums & Moderators



Pictures: http://rapidshare.com/files/15246918/vb-xss.rar.html


Security researcher? Join us: mail Zinho at zinho at hackerscenter.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server