MyBB 1.4.3 my_post_key Disclosure Vulnerability

MyBB 1.4.3 mypostkey Disclosure Vulnerability by NBBN http://nbbnsblog.co.cc Vendor: http://mybboard.net Date: November 25, 2008 These URLs contains "mypostkey". Moderators and admins use these sometimes, depending on what they want to do with a thread. mypostkey is used to perform various action...

mybb-disclose.txt

MyBB 1.4.3 mypostkey Disclosure Vulnerability by NBBN http://nbbnsblog.co.cc Vendor: http://mybboard.net Date: November 25, 2008 These URLs contains "mypostkey". Moderators and admins use these sometimes, depending on what they want to do with a thread. mypostkey is used to perform various action...

mxBB Module mx_blogs 2.0.0-beta Remote File Inclusion Exploit

No description provided by source. mxBB Module mxblogs 2.0.0-beta Remote File Include Exploit Vendor: http://www.mx-system.com Download: http://www.mx-system.com/index.php?page=4&action=file&fileid=405 Vulncode in: /includes/functionsweblog.php line 24 Greetz: str0ke, TheJT, rgod, Vallani, DNX,...

phpBB 2.0.23 Session Hijacking Vulnerability

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ phpBB 2.0.23 Session Hijacking Vulnerability + found by NBBN 13 Mar 2008 + +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ::Information about this vulnerabilty If a moderator or an admin close a thread in phpBB 2.0.X, th...

phpbb2023-hijack.txt

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ phpBB 2.0.23 Session Hijacking Vulnerability + found by NBBN 13 Mar 2008 + +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ::Information about this vulnerabilty If a moderator or an admin close a thread in phpBB 2.0.X, th...

WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability

WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability Vendor: woltlab.de Version: Lite 2 Beta 1 Released: March 6 2008 Bug found by NBBN on March 8 2008 ::Example htmlhead/headbody onLoad="javascript:document.attack.submit" form action="http://site.tld/wbblite/index.php"...

Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities

Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities by NBBN 1 Remote File Inclusion File: /modules/syntaxhighlight.php Register Globals: ON Vuln code: ?php / Name: Syntax Highlight / includeonce "$libpath/geshi/geshi.php"; Poc:...

WordPress Plugin Sniplets 1.1.2 - Remote File Inclusion / Cross-Site Scripting / Remote Code Execution

Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities by NBBN 1 Remote File Inclusion File: /modules/syntaxhighlight.php Register Globals: ON Vuln code: "/ http://victim.tld/wordpress/wp-content/plugins/sniplets/view/admin/pager.php?page=%22%3E%3Cscript%3Ealert%22XSS%22%3C/script%3E 3 Remote...

WordPress Plugin Sniplets 1.1.2 - Remote File Inclusion Cross-Site Scripting Remote Code Execution

WordPress Plugin Sniplets 1.1.2 - Remote File Inclusion Cross-Site Scripting Remote Code Execution Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities by NBBN 1 Remote File Inclusion File: /modules/syntaxhighlight.php Register Globals: ON Vuln code: "/...

woltlab303-sql.txt

WoltLab Burning Board 3.0.3 PL1 SQL Injection Vulnerability by NBBN Vendor: http://woltlab.de ::Proof of Concept http://site.tld/wbb3/index.php?page=PMList&folderID=0&pageNo=1&sortField=isViewed&sortOrder=ASC, SELECT password FROM wcf1user WHERE userID=1 AND...

Webspell 4.01.02 2 Vulnerabilites

Webspell 4.01.02 2 Vulnerabilites Founded by NBBN Vendor: http://cms.webspell.org 1 Cross-Site Scripting Vulnerability 2 Change User Permission XSRF Vulnerability 1 http://site.tld/path/index.php?site=whoisonline&sort="xss code 2 This creates a superadmin account, when an admin click a link, to a...