|
MyBB User Control Panel Cross-Site Request Forgery
|
|
|
|
|
Secunia Advisory:
|
SA18603
|
|
|
Release Date:
|
2006-01-25
|
|
Last Update:
|
2006-04-27
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Hijacking
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | MyBB (formerly MyBulletinBoard) 1.x
|
| | CVE reference: | CVE-2006-0442 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Roozbeh Afrasiabi has discovered a vulnerability in MyBB, which can be exploited by malicious people to conduct cross-site request forgery attacks.
The vulnerability is caused due to the application allowing users to perform certain actions via HTTP POST requests without performing any validity checks to verify the user's request. This can e.g. be exploited to inject arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious user data is viewed.
Example:
Input passed to the "notepad" parameter when editing the personal pad and the "signature" parameter when editing the signature in the user control panel.
NOTE: The "notepad" parameter is sanitised in version 1.03 and later.
The vulnerability has been confirmed in versions 1.02 and 1.10. Other versions may also be affected.
Solution:
Update to version 1.1.1.
http://www.mybboard.com/downloads.php
Provided and/or discovered by:
Roozbeh Afrasiabi
Changelog:
2006-01-31: Added CVE reference.
2006-03-14: Updated "Description" section.
2006-04-27: Updated "Solution" section.
Original Advisory:
http://kapda.ir/advisory-241.html
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
35 Related Secunia Security Advisories, displaying 10
|
|
|
1. MyBB "search.php" Cross-Site Scripting
|
|
2. MyBB Multiple Vulnerabilities
|
|
3. MyBB SQL Injection and Cross-Site Request Forgery Vulnerabilities
|
|
4. MyBB PHP Code Execution and SQL Injection Vulnerabilities
|
|
5. MyBB "day" SQL Injection Vulnerability
|
|
6. MyBB "Client-IP" SQL Injection and Code Execution
|
|
7. MyBB private.php Cross-Site Request Forgery and Cross-Site Scripting
|
|
8. MyBB Cross-Site Scripting Vulnerabilities
|
|
9. MyBB Cross-Site Scripting and Script Insertion Vulnerabilities
|
|
10. MyBB Avatar / Attachment Script Insertion Vulnerability
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
