MyBulletinBoard (MyBB) search.php keywords Variable XSS

2006-02-06T01:52:31
ID OSVDB:23937
Type osvdb
Reporter OSVDB
Modified 2006-02-06T01:52:31

Description

Manual Testing Notes

/search.php?s=de1aaf9b&action=do_search&keywords=%3Cscript%3Ealert(1)%3C/script%3E&srchtype=3

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-02/0105.html CVE-2006-0639