header-logo
Suggest Exploit
vendor:
IP.Board
by:
snop
7,5
CVSS
HIGH
Stored XSS
79
CWE
Product Name: IP.Board
Affected Version From: 4.X
Affected Version To: 4.X
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Webapps
2015

IP.Board 4.X Stored XSS

A registered or non-registered user can create a calendar event including malicious JavaScript code who will be permanently stored in the pages source.

Mitigation:

Update to version 4.0.12.1
Source

Exploit-DB raw data:

# Exploit Title: IP.Board 4.X Stored XSS
# Date: 27-08-2015
# Software Link: https://www.invisionpower.com/
# Exploit Author: snop.
# Contact: http://twitter.com/rabbitz_org
# Website: http://rabbitz.org
# Category: webapps

1. Description

A registered or non-registered user can create a calendar event
including malicious JavaScript code who will be permanently stored in
the pages source.

2. Proof of Concept

http://URL_TO_FORUM/calendar/submit/?calendar=1

POST:
Affected Paramter: event_location[address][]

3. Solution

Update to version 4.0.12.1
https://community.invisionpower.com/release-notes/40121-r22/

Disclosure Timeline
27.07.15: Vendor notified
05.08.15: Fix released
27.08.15: Public disclosure

Navigation

Suggest Exploit

Services By CQR