Carbon Forum 5.9.0 Cross Site Scripting ≈ Packet Storm

Home^[1] Files^[2] News^[3] &[SERVICES_TAB] Contact^[4] Add New^[5]

Change Mirror^[11] Download^[12]

        # Exploit Title: Persistent XSS in Carbon Forum 5.9.0 (Stored)
# Date: 06/12/2024
# Exploit Author: Chokri Hammedi
# Vendor Homepage: https://www.94cb.com/
# Software Link: https://github.com/lincanbin/Carbon-Forum
# Version: 5.9.0
# Tested on: Windows XP
# CVE: N/A
## Vulnerability Details
A persistent (stored) XSS vulnerability was discovered in Carbon Forum
version 5.9.0. The vulnerability allows an attacker to inject malicious
JavaScript code into the Forum Name field under the admin settings. This
payload is stored on the server and executed in the browser of any user who
visits the forum, leading to potential session hijacking, data theft, and
other malicious activities.
## Steps to Reproduce
1. Login as Admin: Access the Carbon Forum with admin privileges.
2. Navigate to Settings: Go to the '/dashboard' and select the Basic
section.
3. Enter Payload : Input the following payload in the Forum Name field:
<script>alert('XSS');</script>
4. Save Settings: Save the changes.
5. The xss payload will triggers

• Follow us on Twitter^[15]
• Follow us on Facebook^[16]
• Subscribe to an RSS Feed^[17]

File Tags

• ActiveX^[18] (933)
• Advisory^[19] (85,596)
• Arbitrary^[20] (16,747)
• BBS^[21] (2,859)
• Bypass^[22] (1,835)
• CGI^[23] (1,032)
• Code Execution^[24] (7,707)
• Conference^[25] (691)
• Cracker^[26] (844)
• CSRF^[27] (3,375)
• DoS^[28] (24,844)
• Encryption^[29] (2,388)
• Exploit^[30] (52,953)
• File Inclusion^[31] (4,255)
• File Upload^[32] (987)
• Firewall^[33] (822)
• Info Disclosure^[34] (2,871)
• Intrusion Detection^[35] (911)
• Java^[36] (3,129)
• JavaScript^[37] (894)
• Kernel^[38] (7,098)
• Local^[39] (14,739)
• Magazine^[40] (586)
• Overflow^[41] (13,125)
• Perl^[42] (1,434)
• PHP^[43] (5,213)
• Proof of Concept^[44] (2,375)
• Protocol^[45] (3,713)
• Python^[46] (1,623)
• Remote^[47] (31,520)
• Root^[48] (3,621)
• Rootkit^[49] (524)
• Ruby^[50] (627)
• Scanner^[51] (1,653)
• Security Tool^[52] (8,008)
• Shell^[53] (3,264)
• Shellcode^[54] (1,217)
• Sniffer^[55] (901)
• Spoof^[56] (2,266)
• SQL Injection^[57] (16,561)
• TCP^[58] (2,433)
• Trojan^[59] (690)
• UDP^[60] (900)
• Virus^[61] (669)
• Vulnerability^[62] (32,803)
• Web^[63] (9,924)
• Whitepaper^[64] (3,778)
• x86^[65] (967)
• XSS^[66] (18,215)
• Other^[67]

File Archives

• June 2024^[68]
• May 2024^[69]
• April 2024^[70]
• March 2024^[71]
• February 2024^[72]
• January 2024^[73]
• December 2023^[74]
• November 2023^[75]
• October 2023^[76]
• September 2023^[77]
• August 2023^[78]
• July 2023^[79]
• Older^[80]

Systems

• AIX^[81] (429)
• Apple^[82] (2,089)
• BSD^[83] (376)
• CentOS^[84] (58)
• Cisco^[85] (1,927)
• Debian^[86] (7,056)
• Fedora^[87] (1,693)
• FreeBSD^[88] (1,246)
• Gentoo^[89] (4,500)
• HPUX^[90] (880)
• iOS^[91] (375)
• iPhone^[92] (108)
• IRIX^[93] (220)
• Juniper^[94] (69)
• Linux^[95] (49,990)
• Mac OS X^[96] (691)
• Mandriva^[97] (3,105)
• NetBSD^[98] (256)
• OpenBSD^[99] (488)
• RedHat^[100] (16,053)
• Slackware^[101] (941)
• Solaris^[102] (1,611)
• SUSE^[103] (1,444)
• Ubuntu^[104] (9,568)
• UNIX^[105] (9,416)
• UnixWare^[106] (187)
• Windows^[107] (6,662)
• Other^[108]

© 2022 Packet Storm. All rights reserved.