Search...

EV0132.txt

2006-08-17T00:00:00

ID PACKETSTORM:49003
Type packetstorm
Reporter Aliaksandr Hartsuyeu
Modified 2006-08-17T00:00:00

Description

                                        
                                            `New eVuln Advisory:  
MyBB 'Avatar URL' XSS Vulnerability  
http://evuln.com/vulns/132/summary.html  
  
--------------------Summary----------------  
eVuln ID: EV0132  
Vendor: MyBB Group  
Vendor's Web Site: http://www.mybboard.com/  
Software: MyBB  
Sowtware's Web Site: http://www.mybboard.com/  
Versions: 1.1.6 and earlier  
Critical Level: Moderate  
Type: Cross-Site Scripting  
Class: Remote  
Status: Unpatched. No reply from developer(s)  
PoC/Exploit: Available  
Solution: Available  
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)  
  
-----------------Description---------------  
Every user has an ability to edit his avatar URL. Avatar URL is not properly sanitized. This can be used to post arbitrary web script code using 'Tab' symbol.  
  
--------------PoC/Exploit----------------------  
  
Example of XSS:  
  
Avatar URL:  
javasc ript:alert(123)  
(using 'Tab' symbol to separate 'script' word)  
  
--------------Solution---------------------  
Solution is available at vendors web site:  
  
Upgrade you copy of MyBB to the 1.1.7 version.  
  
http://www.mybboard.com/  
  
--------------Credit-----------------------  
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)  
  
  
Regards,  
Aliaksandr Hartsuyeu  
http://evuln.com - Penetration Testing Services  
`

JSON Vulners Source

Initial Source

{"id": "PACKETSTORM:49003", "type": "packetstorm", "bulletinFamily": "exploit", "title": "EV0132.txt", "description": "", "published": "2006-08-17T00:00:00", "modified": "2006-08-17T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/49003/EV0132.txt.html", "reporter": "Aliaksandr Hartsuyeu", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:26:21", "viewCount": 1, "enchantments": {"score": {"value": -0.4, "vector": "NONE", "modified": "2016-11-03T10:26:21", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:26:21", "rev": 2}, "vulnersScore": -0.4}, "sourceHref": "https://packetstormsecurity.com/files/download/49003/EV0132.txt", "sourceData": "`New eVuln Advisory: \nMyBB 'Avatar URL' XSS Vulnerability \nhttp://evuln.com/vulns/132/summary.html \n \n--------------------Summary---------------- \neVuln ID: EV0132 \nVendor: MyBB Group \nVendor's Web Site: http://www.mybboard.com/ \nSoftware: MyBB \nSowtware's Web Site: http://www.mybboard.com/ \nVersions: 1.1.6 and earlier \nCritical Level: Moderate \nType: Cross-Site Scripting \nClass: Remote \nStatus: Unpatched. No reply from developer(s) \nPoC/Exploit: Available \nSolution: Available \nDiscovered by: Aliaksandr Hartsuyeu (eVuln.com) \n \n-----------------Description--------------- \nEvery user has an ability to edit his avatar URL. Avatar URL is not properly sanitized. This can be used to post arbitrary web script code using 'Tab' symbol. \n \n--------------PoC/Exploit---------------------- \n \nExample of XSS: \n \nAvatar URL: \njavasc ript:alert(123) \n(using 'Tab' symbol to separate 'script' word) \n \n--------------Solution--------------------- \nSolution is available at vendors web site: \n \nUpgrade you copy of MyBB to the 1.1.7 version. \n \nhttp://www.mybboard.com/ \n \n--------------Credit----------------------- \nDiscovered by: Aliaksandr Hartsuyeu (eVuln.com) \n \n \nRegards, \nAliaksandr Hartsuyeu \nhttp://evuln.com - Penetration Testing Services \n`\n", "immutableFields": []}