|
YaBB / YaBB SE Formatting Tag Cross-Site Scripting Vulnerability
|
|
Secunia Advisory:
|
SA11128
|
|
|
Release Date:
|
2004-03-16
|
|
Last Update:
|
2004-09-21
|
|
Popularity:
|
7,771 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Cross Site Scripting
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | YaBB 1.x
YaBB SE 1.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
Description:
Cheng Peng Su has reported a vulnerability in YaBB and YaBB SE, allowing malicious people to conduct cross-site scripting attacks.
The problem is that input passed to the "glow" and "shadow" tags isn't filtered properly. This can be exploited by posting malicious messages with script code embedded in the tags. The script code will be executed when messages are read.
Example:
[glow=red);background:url(javascript:script_code);filter:glow(color=red,2,300]Text[/glow]
The vulnerability has been reported in YaBB 1 Gold(SP1.3) and YaBB SE 1.5.1 Final. Other versions may also be affected.
Solution:
Update to YaBB 1 GOLD SP 1.3.2.
http://www.yabbforum.com/downloads.php
Provided and/or discovered by:
Cheng Peng Su
Changelog:
2004-09-21: Updated "Solution" section.
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
