Minecraftforum.net was recently hacked. How? It seems to me that the hacker used a rather basic method. He embedded a web page located on a site under his control into the Minecraft forum using
the img tag
I discovered this today when looking at view source and making some connections.
Wasn't sure where to put this thread, but it is relevant to browsers because it is dealing with BB Code. I just really hope that SevenForums is protected against this exploit.
EDIT: Researching it revealed that the PHP script disguised its output as an image MIME type, thus tricking the forum into interpreting it as an image and embedding it.