TUCoPS :: Web BBS :: Frequently Exploited :: b06-2137.htm

vbulletin security Alert
vbulletin security Alert
vbulletin security Alert


#----------------------------------------------------------=0D
#Discovered  by: Aura=0D
#ARIA - SECURITY TEAM =0D
#Gr33t to: O.U.T.L.A.W & R@1D3N & Smok3r=0D
#-----------------------------------------------------------=0D
=BB Vendor: Vbulletin=0D
=0D
=BB Summary:=0D
vbulletin is a powerfull Forum System=0D
=0D
=BBDescription=0D
=0D
An administrator user may upload  CSS Code that's obteining a phpshell ,and chose it from the vbulletin's style choser. So when he chose it he will see the phpshell.=0D
=0D
Here is an example of the css file=0D
http://b3hr0uz.persiangig.com/VbStyleVuln.txt=0D 
=0D
in this file the xml obtein a phpshell so the user have to upload the xml file and then chose his style and that's it .=0D
=0D
Note : don't forget to chose ignore style version ( :P ) and also that you'll maybe think about this isn't a bug actualy u can make your access to the server with stealling the administrator password=0D
=0D
=0D
=0D
=0D
Discovered By Aria-Security Team (Aura - Outlaw - Rayden)=0D
=0D
=0D
=BB Solution=0D
No Solution . ( maybe by password protection from you cpanel)=0D
contact: Advisory@Aria-Security.net=0D 
=0D

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH