f7b4bca87b
12 changes to exploits/shellcodes MyBB Delete Account Plugin 1.4 - Cross-Site Scripting Zoo Management System 1.0 - 'anid' SQL Injection User Management System 1.0 - 'uid' SQL Injection Park Ticketing Management System 1.0 - 'viewid' SQL Injection MyBB Trending Widget Plugin 1.2 - Cross-Site Scripting MyBB Thread Redirect Plugin 0.2.1 - Cross-Site Scripting bloofoxCMS 0.5.2.1 - CSRF (Add user) H8 SSRMS - 'id' IDOR Vehicle Parking Tracker System 1.0 - 'Owner Name' Stored Cross-Site Scripting Roundcube Webmail 1.2 - File Disclosure Klog Server 2.4.1 - Command Injection (Authenticated) WordPress 5.0.0 - Image Remote Code Execution
16 lines
No EOL
605 B
Text
16 lines
No EOL
605 B
Text
# Exploit Title: MyBB Thread Redirect Plugin 0.2.1 - Cross-Site Scripting
|
|
# Date: 7/23/2018
|
|
# Author: 0xB9
|
|
# Software Link: https://github.com/jamiesage123/Thread-Redirect
|
|
# Version: 0.2.1
|
|
# Tested on: Windows 10
|
|
|
|
1. Description:
|
|
This plugin allows threads to redirect to a URL with optional custom text. The custom text input is vulnerable to Cross-Site Scripting.
|
|
|
|
2. Proof of Concept:
|
|
|
|
- Create a new thread
|
|
- Input any Thread Subject and Redirect URL you'd like
|
|
- Use the following payload for Your Message <svg/onload=alert('XSS')>
|
|
Anyone who views the thread will execute payload. |