Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the administrative backend in MyBB aka MyBulletinBoard before 1.8.4 allow remote authenticated users to inject arbitrary web script or HTML via the 1 MIME-type field in an add action in the config-attachmenttypes module to admin/index.php; 2...

MyBB 1.6.12 - Admin Panel FPD & Multiple XSS

Latest mybb forums suffers on multiple persistent cross site scripting vulnerability and single full path disclosure. Probably, there are more bugs because of poor content filtration. Title: MyBB 1.6.12 - Admin Panel FPD & Multiple XSS Date: 01.11.2014 Tested on: Linux 3.7-trunk-686-pae 1 SMP...

MYBB 1.6 (admin/index.php) XSS Vulnerabilities

Exploit for php platform in category web applications ============================================== MYBB 1.6 admin/index.php XSS Vulnerabilities ============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...

vBulletin 3.8.2 Cross Site Scripting

vBulletin 3.8.2 adminCP Cross-Site Scripting R.I.P DrtRp - We miss you --------------------------------------------- Original Post at http://forum.aria-security.com/en/showthread.php?p=1179 Greetz to Aura & all Aria-Security Mods & Members These were all tested on vbulletin 3.8.0 RC2 so other...