96e4f1686b
9 changes to exploits/shellcodes GNU Barcode 0.99 - Buffer Overflow GNU Barcode 0.99 - Memory Leak IssueTrak 7.0 - SQL Injection Sitemakin SLAC 1.0 - 'my_item_search' SQL Injection NUUO NVRmini2 / NVRsolo - Arbitrary File Upload MyBB ChangUonDyU Plugin 1.0.2 - Cross-Site Scripting Pivotal Spring Java Framework < 5.0 - Remote Code Execution Facebook Clone Script 1.0.5 - 'search' SQL Injection Facebook Clone Script 1.0.5 - Cross-Site Request Forgery
25 lines
No EOL
658 B
Text
25 lines
No EOL
658 B
Text
# Exploit Title: MyBB ChangUonDyU Advanced Statistics Plugin v1.0.2 - Cross-Site Scripting
|
|
# Date: 5/25/2018
|
|
# Author: 0xB9
|
|
# Twitter: @0xB9Sec
|
|
# Contact: 0xB9[at]pm.me
|
|
# Software Link: https://community.mybb.com/mods.php?action=view&pid=1125
|
|
# Version: 1.0.2
|
|
# Tested on: Ubuntu 18.04
|
|
# CVE: CVE-2018-11532
|
|
|
|
|
|
1. Description:
|
|
This plugin displays advanced statistics on the index page such as latest posts with auto refresh using AJAX.
|
|
|
|
|
|
|
|
2. Proof of Concept:
|
|
Create a new thread with the following payload as the title <svg onload=alert('XSS')>
|
|
|
|
The alert will appear on the index page
|
|
|
|
|
|
|
|
3. Solution:
|
|
Update to the latest release |