PrivateAlps.net - Offshore Cloud Services | VPS/RDP/VPN - Dedicated Servers - Webhosting - TOR Services - Auto Deploy
ADULTSLAYER.STORE 💎 #1 PORN SHOP | 700+ Hot Products: Brazzers, Teamskeet, Pornhub, NaughtyAmerica, Many More! | 💸 Secure PayPal & Card Payments | Satisfaction Guaranteed! 🔥
XenForo Releases

Xenforo Vulnerability [PERSISTENT XSS] [0DAY]

Submitted by Deadboy, , Thread ID: 32662

Thread Closed
17-04-2017, 10:23 PM
Working Not Working Link Down
#1
There is a stored XSS Vulnerability affecting the alert system for XenForo CMS. It allows an authenticated attacker
to create specialized payloads that are highly flexible in terms of who they want to target. It also allows an
attacker to replace the contents of the index page despite this not being possible via regular admin access. Payloads
can be 'timed', meaning that an attackers code can execute even AFTER they've lost access to their account with privs.


Content locked
This content has been locked. Please login or register in order to unlock it.

Users browsing this thread: 1 Guest(s)