|21 Nov 2010||#1|
| || |
BB Code Security hole in PHPBB 3!
Minecraftforum.net was recently hacked. How? It seems to me that the hacker used a rather basic method. He embedded a web page located on a site under his control into the Minecraft forum using the img tag
I discovered this today when looking at view source and making some connections.
Wasn't sure where to put this thread, but it is relevant to browsers because it is dealing with BB Code. I just really hope that SevenForums is protected against this exploit.
EDIT: Researching it revealed that the PHP script disguised its output as an image MIME type, thus tricking the forum into interpreting it as an image and embedding it.
|My System Specs|
|Similar help and support threads for2: BB Code Security hole in PHPBB 3!|
|Wi-Fi Protected Setup security hole discovered.||Network & Sharing|
|Win7 shares possible huge security hole||Network & Sharing|
|PDF security hole opens can of worms.||Security News|
|Strange hole in security||General Discussion|
|Vbootkit security hole||System Security|
|Zero Day Security Hole In Windows 7?||System Security|
|Security hole in UAC||News|
|Our Sites ||Site Links ||About Us ||Find Us |
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd
All times are GMT -5. The time now is 11:44 AM.