exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

kapda-13.txt

kapda-13.txt
Posted Nov 20, 2005
Authored by trueend5 | Site KAPDA.ir

KAPDA Advisory - XMB version 1.9.3 Nexus (Final) and 1.9.2 Nexus are susceptible to cross site scripting and html injection flaws.

tags | exploit, xss
SHA-256 | 297f8291e00f8750c205028ac1f0e9e23651d985c7c5fbfc6d74a6faf8f0d6f4

kapda-13.txt

Change Mirror Download
[KAPDA::#13] -  XMB (extreme message board) HTML
Injection & Path Disclosure.

KAPDA New advisory
Vendor: http://www.xmbforum.com
Bug: HTML Injection & Path Disclosure
Exploitation: Remote with browser

Description:
--------------------
XMB is a free message board powered by PHP and MySQL.

Vulnerability:
--------------------
HTML Injection: The software does not properly filter
HTML tags in member.php ["Your Current Mood" field] at
the time of registeration (/member.php?action=reg)
that may allow a remote user to inject HTML/javascript
codes. The hostile code may be rendered in the web
browser of the victim user who will visit the
board.(persistent)
For example: >> Your Current Mood:
<script>alert(document.cookie)</script>
Vulnerable Versions: XMB 1.9.3 Nexus (Final) , XMB
1.9.2 Nexus & also all versins
Path Disclosure:A remote user can supply a specially
crafted URL to cause the system to display an error
message that
discloses the installation path and other data.
Demonstration URL :
http://localhost/XMB/Files/post.php?action=newthread&fid=PATH
Vulnerable Version: XMB 1.9.2 Nexus

Solution:
--------------------
There is no vendor-supplied patch for this issue at
this time.
Note: the security patch that released by vendor is
for another vulnerability

Original advisory:
--------------------
http://irannetjob.com/content/view/163/28/

Credit :
--------------------
Discovered & released by trueend5 (trueend5 kapda ir)
Security Science Researchers Institute Of Iran
[http://www.KAPDA.ir]






__________________________________
Yahoo! Mail - PC Magazine Editors' Choice 2005
http://mail.yahoo.com
Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close