Bugtraq mailing list archives
XSS in Vbulletin 3.6.0 in IE 0nly
From: Stefan () dakotacom net
Date: 3 Aug 2006 22:44:55 -0000
--------------------------------- XSS in Vbulletin 3.6.0 in IE 0nly --------------------------------- Author: Stefan Email: stefan () dakotacom net Group: EnigmaGroup --------------------------------- Vulnerable: vbulletin 3.5.4 in IE Vulnerable: vbulletin 3.6.0 in IE --------------------------------- Javascript may be executed by saving code as .pdf and uploading as attachment.This only works in IE ----------------------------------- Poc: http://www.xandith.com
Current thread:
- XSS in Vbulletin 3.6.0 in IE 0nly Stefan (Aug 04)