Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


MyBB MyChat Shoutbox Spamming & CSRF 0day Exploit

  • 0 Vote(s) - 0 Average


04-11-2014, 01:30 AM #1
1337 Offline Don't PM me for help, post it on forum ! *******
Administrators
Posts:525 Threads:106 Joined:Jun 2012 Reputation: 21
Mood: Hacker
[Image: mpj7b.jpg]

Hi guys,
I was bored so decided to play with a few MyBB plugins.
I found that MyChat Shoutbox plugin is vulnerable to users spamming as a Guest (Spamming without registering on the forum) and vulnerable to CSRF.
Plugin has no security token to POST data. Therefor it is vulnerable to CSRF also.
Lets see how it works:
Code:
http://target.com/mychat.php?action=insert&message=1337

The above link will submit a message http://www.MaDLeeTs.com with out any problem. If you are not logged in, you can submit messages as a Guest.

To see results, you can see it on the forums index if admins have allowed chatbox to be seen by Guests. If Guests can not see it on forums index, they can see it by the link below:
Code:
http://xnonymoux.org/mychat.php?action=update

You can troll an admin by adding http://target.com/mychat.php?action=insert&message=1337 in a iframe and submit it via PM to the admin of the forum. Once he opens it, a message will be posted by his account. If messages can be seen as a Guest on forum index, you can make your targets forum admin submit a HaCked message with your code-name by replacing 1337 . Once done, mirror it on Zone-H and it might be approved since you where not authorized to submit such messages by admins account Tonguesmiley

Here is a site that you can play with wink
Live Demo:
Code:
http://xnonymoux.org/mychat.php?action=insert&message=1337

What ever you submit in message= will be displayed here:
Code:
http://xnonymoux.org/mychat.php?action=update

Note: If you refresh mychat.php?action=insert&message=1337 page, and hold F5. It will flood targets chatbox
Have fun Biggrinsmiley

Exploit by 1337 - TeaM MaDLeeTs
http://www.MaDLeeTs.com

[Image: 28jeale.jpg]
[Image: 2mzgpld.jpg]
------------------------------------------------
[#] CodeName: 1337
[#] Email: [email protected]
[#] Zone-H: http://zone-h.org/archive/special=1/notifier=1337
[#] Facebook: https://www.facebook.com/MaDLeeTs.phtm

-------------------------------------------------

[Image: o8rq6s.jpg]

04-11-2014, 02:00 AM #2
skywalk3r Offline Programmers Of The Mad House ******
Mad Coder's
Posts:121 Threads:28 Joined:Aug 2012 Reputation: 6
Mood: What
Code:
http://minecraftpeforum.net/mychat.php?&action=update
found one Biggrinsmiley
Thnx for share 1337 wink

04-11-2014, 02:07 AM #3
AZ Sn1ff3r (PCP) Offline Mad Lover of Security ******
V.I.P
Posts:461 Threads:46 Joined:Mar 2013 Reputation: 0
Mood: Mad
hehehe Thankxx Its very nice 4 trolling Biggrinsmiley & Sharing links ^_^ THANKXXX Smiley1

04-11-2014, 02:29 AM #4
CrashBandicot Offline MaDLeeTs LoVer *****
MaDLeeTs LoVer
Posts:104 Threads:15 Joined:Jul 2013 Reputation: 4
Mood: Zombie
Thnkx for Share

04-11-2014, 03:44 AM #5
1.13.19.Hacker Offline MaDLeeTs LoVer *****
MaDLeeTs LoVer
Posts:114 Threads:48 Joined:Oct 2013 Reputation: 14
Mood: Zombie
Nice Bro.......

[Image: 2w7fq1l.gif]

04-19-2014, 05:03 AM #6
xMebhZer0 Offline MaDLeeTs LoVer *****
MaDLeeTs LoVer
Posts:15 Threads:2 Joined:Oct 2013 Reputation: 0
Mood: None
I must try this Biggrinsmiley
Thanks 1337 Biggrinsmiley

Love your rage, not your cage

04-19-2014, 05:33 AM #7
[email protected] Offline Posting Freak *****
Registered
Posts:936 Threads:133 Joined:Dec 2012 Reputation: 1
Mood: None
Great bro (Y) wink ,.



05-13-2014, 09:51 PM #8
VIRkid Offline MadLeets Vip ******
V.I.P
Posts:62 Threads:9 Joined:Oct 2013 Reputation: 9
Mood: Blessed
awesome wink

06-08-2014, 06:49 AM #9
FOH Offline Father Of Hacking ******
V.I.P
Posts:889 Threads:31 Joined:Jul 2012 Reputation: 4
Mood: Relaxed
Great Biggrinsmiley

NO FEAR Father Of Hacking (FOH) IS HERE


06-09-2014, 12:51 AM #10
KaMi HaXor Offline Any Help ContaCt *****
Respected
Posts:508 Threads:264 Joined:Feb 2013 Reputation: 23
Mood: Zombie
I have tried that Its Working 100% still now Biggrinsmiley Biggrinsmiley Biggrinsmiley

[Image: un7oYOs.png]
[Image: FL8ZXnw.gif]






Forum Jump:


Users browsing this thread:1 Guest(s)