Exploit phpBB 2.0.6 - URL BBCode HTML Injection

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
23125
Проверка EDB
  1. Пройдено
Автор
KEUPON_PS2
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
null
Дата публикации
2003-09-08
Код:
source: https://www.securityfocus.com/bid/8570/info


phpBB BBCode has been reported prone to an HTML injection vulnerability. It has been reported that an attacker may inject malicious script into areas of phpBB where BBCode is rendered, for example, bulletin board posts or private messages. This issue is due to a lack of sufficient sanitization performed on user supplied URL BBCode tags.

An attacker may exploit this issue to steal cookie-based authentication credentials; other attacks may also be possible. 

[url=http://www.example.com" onclick="alert('Hello')]text[/url]

[url=http://www.example.com" onclick=alert("bug");"]test[/url]
 
Источник
www.exploit-db.com

Похожие темы