[KAPDA]MyBB 1.1.4~function_post.php~XSS Attack In URL tag

2006-06-28T00:00:00
ID SECURITYVULNS:DOC:13358
Type securityvulns
Reporter Securityvulns
Modified 2006-06-28T00:00:00

Description

ORIGINAL ADVISORY: http://kapda.ir/page-advisory.html http://myimei.com/security/2006-06-22/mybb-114-function_postphpxss-attack-in-url-tag.html

——————–Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.1.3 Class: Remote Status: Patched Exploit: Available Discovered by: imei addmimistrator Risk Level:low-medium —————–Description————— Mybb has a security bug that allows hackers run unwanted scripts into client’s browser that well known as XSS cross site scripting attack. READ ORIGINAL ADVISORY FOR MORE DETAIL