[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Vbulletin - Two-Step External Link XSS
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: Vbulletin - Two-Step External Link XSS
- From: edgard.chammas@xxxxxxxxxxxxxxxxxxx
- Date: 20 Apr 2010 07:32:00 -0000
###############################################
# Vendor: vBulletin
# Affected versions: 3.7.x - 3.8.x
# Mod: Two-Step External Link
# URL: http://www.vbulletin.org/forum/showthread.php?t=217708
# Vulnerability type: XSS
# Risk rating: Medium
###############################################
# [Exploit]
# http://[FORUM]/externalredirect.php?url=XSS
###############################################
# [Bug]
# File: externalredirect.php (line 35)
# Code: $url = $vbulletin->GPC['url'];
###############################################
# [Solution]
# $url = htmlentities($vbulletin->GPC['url']);
###############################################
# [Credits]
# Edgard Chammas [454447415244]
# edgard.chammas@xxxxxxxxxxxxxxxxxxx
###############################################