• vBSEO XSS Trojan - EvilWebTool

    16,371 views 4 years ago
    This video demonstrates a recently created tool (EvilWebTool) which abuses a flaw in vBSEO (persistent cross-site scripting), allowing an attacker to inject persistent scripts into the linkback moderation queue.

    When an administrator views the moderation queue, an external payload (written in javascript) is loaded directly into the browser window silently, where it without user interaction performs a hidden request to add a new payload to vBulletin, containing PHP Code which the attacker specified in the tool.

    You can download this tool at Exploit-DB and maybe, at InterN0T as well.

    Check out www.intern0t.net , www.exploit-db.com and twitter.com/intern0t !

    If you're more an IRC guy, check out: #exploitdb and #intern0t on irc.freenode.org ! Show less
    Read more
  • Uploads Play all

    This item has been hidden
  • Popular uploads Play all

    This item has been hidden
  • Past live streams Play all

    This item has been hidden
to add this to Watch Later

Add to

Loading playlists...