Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-10678 PoC — MyBB 安全漏洞

Source
https://github.com/hbranco/CVE-2018-10678
Associated Vulnerability
Title:MyBB 安全漏洞 (CVE-2018-10678)
Description:MyBB(又名MyBulletinBoard)是MyBB团队开发的一套用PHP和MySQL开发的免费且基于Web的论坛软件。该软件具有简单易用、支持多国语言、可扩展等特点。 MyBB 1.8.15版本中存在安全漏洞,该漏洞源于程序在使用Microsoft Edge访问MyBB时没有正确的处理A元素中的‘target="_blank" rel="noopener"’。攻击者可利用该漏洞实施重定向攻击。
Description
estudo da CVE-2018-10678
File Snapshot

 [4.0K]  /data/pocs/9675a48c6255b72ee81bda430722adb9afecc770
├── [4.0K]  hack
│   └── [ 160]  index.html
├── [4.0K]  parceiro
│   └── [ 229]  index.html
└── [4.0K]  site
    └── [ 346]  index.html

3 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.