[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[KAPDA]MyBB 1.1.7 ~ admin/global.php ~ XSS Attack

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: [KAPDA]MyBB 1.1.7 ~ admin/global.php ~ XSS Attack
From: addmimistrator@xxxxxxxxx
Date: 30 Aug 2006 13:14:42 -0000

ORIGINAL ADVISORY:
http://myimei.com/security/2006-08-17/mybb-117-adminglobalphp-xss-attack.html
http://kapda.ir/page-advisory.html

**************
??????-Summary?????-
Software: MyBB
Sowtware?s Web Site: http://www.mybboard.com
Versions: 1.1.7
Class: Remote
Status: Unpatched
Exploit: Available
Solution: Available
Discovered by: imei addmimistrator
Risk Level: Medium
??????Description?????
There is some security bug in MyBB 1.1.7 software (latest version fully 
patched) file admin/global.php that allows attacker performe an XSS attack.

FOR MORE DETAIL VISIT ORIGINAL ADVISORY

Prev by Date: osCommerce < 2.2 Milestone 2 060817 POC Exploit
Next by Date: feedsplitter considered harmful
Previous by thread: osCommerce < 2.2 Milestone 2 060817 POC Exploit
Next by thread: feedsplitter considered harmful
Index(es):
- Date
- Thread