Exploit/Advisories

Published on January 25th, 2021 📆 | 3781 Views ⚑

MyBB Timeline Plugin 1.0 – Cross-Site Scripting / CSRF

https://www.ispeech.org/text.to.speech

# Exploit Title: MyBB Timeline Plugin 1.0 - Cross-Site Scripting / CSRF
# Date: 1/21/2021
# Author: 0xB9
# Software Link: https://community.mybb.com/mods.php?action=view&pid=1428
# Version: 1.0
# Tested on: Windows 10

1. Description:
MyBB Timeline replaces the default MyBB user profile. This introduces cross-site scripting on user profiles & a CSRF that allows for the users timeline banner/image to be changed.
 

2. Proof of Concept:

~ XSS via Thread/Post ~
- Make a new thread or reply to an existing thread
- Input a payload in either the thread title or main post itself   
Payload will execute when visiting your profile.

~ XSS via Location/Bio ~
- Go to User CP -> Edit Profile
- Input a payload in the Location/Bio   
Payload will execute when visiting your profile.

~ CSRF ~

Source link

Tagged with: cross • CrossSite • CSRF • MyBB • php • plugin • scripting • timeline • webapps

Comments are closed.

MyBB Timeline Plugin 1.0 – Cross-Site Scripting / CSRF

🌟 Your Account

🔔 Email Subscriptions

Get new posts by email

Donate Via Wallets

Popular

Gloss

☕️Social Media

👥Members

🌍 Forum Groups