Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
March 16, 2010
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 urlaxe services
 y3dips ITsec
 Md5 Cracker
 plain-text.info
 LifeDork
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account
Cheap Car Insurance
User Info
Welcome, Anonymous
Nickname
Password
(Register)
Membership:
Latest: fjhh
New Today: 1
New Yesterday: 5
Overall: 6027
People Online:
Visitors: 125
Members: 3
Total: 128
Online Now:
01: AZRUK - Forums
02: dh123 - Forums
03: fjhh - Homepage
milw0rm
·BigAnt Server <= 2.50 SP6 Local (ZIP File) Buffer Overflow PoC #2
·Joomla com_mytube (user_id) Blind SQL Injection Exploit
·Joomla com_jinc (newsid) Blind SQL Injection Vulnerability
·Snort < 2.8.5 Unified1 Output Denial of Service Exploit
·WX Guest Book 1.1.208 (SQL/XSS) Multiple Remote Vulnerabilities
·Loggix Project <= 9.4.5 Multiple Remote File Inclusion Vulnerabilities
·ProdLer <= 2.0 (prodler.class.php sPath) RFI Vulnerability
·CMScontrol 7.x (index.php id_menu) SQL Injection Vulnerability
·cP Creator 2.7.1 (Cookie tickets) Remote SQL Injection Exploit
·Winplot (.wp2 File) Local Buffer Overflow Exploit

read more...
PacketStorm News
·cisco-sa-20100217-fwsm.tx t
·PR09-04.txt
·cisco-sa-20100217-asa.txt
·dsa-1998-1.txt
·MDVSA-2010-040.txt
·USN-896-1.txt
·USN-895-1.txt
·risingonline-dos.txt
·HardenSSL.zip
·punbbannuaire-sql.txt

read more...
Security Basics
·Detecting/estimate whether data is encrypted
·Where to Start?
·Cisco Switches Layer 2 Security
·FW: SMS Banking
·Re: Transparent vs Routed Firewall
·RE: [Full-disclosure] SMS Banking
·Re: MSN virus
·Re: Transparent vs Routed Firewall
·Re: SMS Banking
·Re: SMS Banking

read more...
Waraxe IT Security Portal: Content Pages List

List of available content in Waraxe IT Security Portal:


· [waraxe-2004-SA#001] - Script injection in GBook for Php-Nuke ver. 1.0
· [waraxe-2004-SA#002] - Cross-Site Scripting (XSS) in Php-Nuke 7.1.0
· [waraxe-2004-SA#003] - SQL injection in Php-Nuke 7.1.0
· [waraxe-2004-SA#004] - Multiple vulnerabilities in XMB 1.8 Partagium Final SP2
· [waraxe-2004-SA#005] - XSS in Php-Nuke 7.1.0 - part 2
· [waraxe-2004-SA#006] - Multiple vulnerabilities in 4nalbum module for PhpNuke
· [waraxe-2004-SA#007] - XSS and SQL injection bugs in 4nguestbook module for PhpNuke
· [waraxe-2004-SA#008] - Easy way to get superadmin rights in PhpNuke 6.x-7.1.0
· [waraxe-2004-SA#009] - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c
· [waraxe-2004-SA#010] - Multiple vulnerabilities in Error Manager v2.1 for PhpNuke
· [waraxe-2004-SA#011] - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke
· [waraxe-2004-SA#012] - Multiple vulnerabilities in XMB 1.8 Partagium SP3 and 1.9 Nexus Beta
· [waraxe-2004-SA#013] - Critical sql injection bug in PhpBB 2.0.8 and in older versions
· [waraxe-2004-SA#014] - Cross-Site Scripting aka XSS in AzDGDatingLite
· [waraxe-2004-SA#015] - Multiple vulnerabilities in NukeCalendar v1.1.a
· [waraxe-2004-SA#016] - Cross-Site Scripting aka XSS in phpnuke 6.x-7.2 part 3
· [waraxe-2004-SA#017] - User-level authentication bypass in phpnuke 6.x-7.2
· [waraxe-2004-SA#018] - Admin-level authentication bypass in phpnuke 6.x-7.2
· [waraxe-2004-SA#019] - Critical sql injection bug in Phorum 3.4.7
· [waraxe-2004-SA#020] - Multiple vulnerabilities in PostNuke 0.726 Phoenix
· [waraxe-2004-SA#021] - Multiple vulnerabilities in phprofession 2.5 module for PostNuke
· [waraxe-2004-SA#022] - Multiple vulnerabilities in PostNuke 0.726 Phoenix - part 2
· [waraxe-2004-SA#023] - XSS and full path disclosure in PhpNuke 7.2
· [waraxe-2004-SA#024] - XSS and full path disclosure in Network Query Tool 1.6
· [waraxe-2004-SA#025] - Multiple vulnerabilities in Protector System 1.15b1 for PhpNuke
· [waraxe-2004-SA#026] - Multiple vulnerabilities in Coppermine Photo Gallery for PhpNuke
· [waraxe-2004-SA#027] - Once again - critical vulnerabilities in PhpNuke 6.x - 7.2
· [waraxe-2004-SA#028] - Multiple vulnerabilities in NukeJokes module for PhpNuke
· [waraxe-2004-SA#029] - Possible remote file inclusion in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#030] - Multiple vulnerabilities in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#031] - Multiple vulnerabilities in e107 version 0.615
· [waraxe-2004-SA#032] - Multiple security flaws in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#033] - Multiple security holes in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#034] - XSS and full path disclosure in PhpBB 2.0.8
· [waraxe-2004-SA#035] - Multiple security holes in PhpNuke - part 2
· [waraxe-2004-SA#036] - Multiple security holes in PhpNuke - part 3
· [waraxe-2004-SA#037] - Sql injection bug in Phorum 5.0.12
· [waraxe-2004-SA#038] - Multiple vulnerabilities in Event Calendar module for PhpNuke
· [waraxe-2005-SA#039] - Critical Sql Injection in Sgallery module for PhpNuke
· [waraxe-2005-SA#040] - Full path disclosure and XSS in PhpNuke 6.x-7.6
· [waraxe-2005-SA#041] - Critical Sql Injection in PhpNuke 6.x-7.6 Top module
· [waraxe-2005-SA#042] - Multiple vulnerabilities in Coppermine Photo Gallery 1.3.2
· [waraxe-2005-SA#043] - Sql injection in Phorum 5.0.20 and earlier
· [waraxe-2006-SA#044] - XSS in phpNuke 7.8 and older versions
· [waraxe-2006-SA#045] - Bypassing CAPTCHA in phpNuke 6.x-7.9
· [waraxe-2006-SA#046] - Critical sql injection in phpNuke 7.5-7.8
· [waraxe-2006-SA#047] - Evading sql-injection filters in phpNuke 7.8
· [waraxe-2007-SA#048] - Multiple vulnerabilities in Virtual War 1.5 module for PhpNuke
· [waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20
· [waraxe-2007-SA#050] - Sql Injection in WordPress 2.1.3
· [waraxe-2007-SA#051] - Sql Injection in 2z Project 0.9.5
· [waraxe-2007-SA#052] - dBlog CMS Open Source database retrieval
· [waraxe-2007-SA#053] - Critical Sql Injection in NukeSentinel 2.5.11
· [waraxe-2007-SA#054] - Local File Inclusion in Dance Music module for phpNuke
· [waraxe-2007-SA#055] - Sql Injection in SiteX CMS 0.7.3 Beta
· [waraxe-2007-SA#056] - Another Sql Injection in NukeSentinel 2.5.11
· [waraxe-2007-SA#057] - Unauthorized File Upload in SiteX CMS
· [waraxe-2007-SA#058] - Critical Sql Injection in NukeSentinel 2.5.12
· [waraxe-2007-SA#059] - XSS in WordPress 2.3
· [waraxe-2007-SA#060] - Sensitive info disclosure in CuteNews <= 1.4.5
· [waraxe-2008-SA#061] - Remote Code Execution in MyBB 1.2.10
· [waraxe-2008-SA#062] - Multiple Sql Injections in MyBB 1.2.10
· [waraxe-2008-SA#063] - Information Leakage in Kayako SupportSuite 3.11.01
· [waraxe-2008-SA#064] - Sql Injection in MyBB 1.2.11
· [waraxe-2008-SA#065] - Remote Shell Command Execution in Coppermine 1.4.14
· [waraxe-2008-SA#066] - Multiple Vulnerabilities in Coppermine 1.4.14
· [waraxe-2008-SA#067] - Easy way to 0wn nulled vBulletin installations
· [waraxe-2008-SA#068] - Sql Injection in vBulletin 3.7.3.pl1
· [waraxe-2008-SA#069] - Multiple Sql Injection in vBulletin 3.7.4
· [waraxe-2009-SA#070] - Multiple Vulnerabilities in MKPortal <= 1.2.1
· [waraxe-2009-SA#071] - Multiple Vulnerabilities in VirtueMart 1.1.2
· [waraxe-2009-SA#072] - Multiple Vulnerabilities in RavenNuke 2.3.0
· [waraxe-2009-SA#073] - Arbitrary File Deletion in Orbit Downloader <= 2.8.7
· [waraxe-2009-SA#074] - Multiple Vulnerabilities in TorrentTrader Classic 1.09
· [waraxe-2009-SA#075] - Remote File Disclosure in Vivvo CMS 4.1.5.1
· [waraxe-2009-SA#076] - Multiple Vulnerabilities in SugarCRM <= 5.2.0j
[ Go Back ]
Top members by posts
waraxe  waraxe - 2319
pexli  pexli - 631
shai-tan  shai-tan - 477
LINUX  LINUX - 404
vince213333  vince213333 - 332
y3dips  y3dips - 281
lenny  lenny - 272
tehhunter  tehhunter - 259
SpyderMonkey  SpyderMonkey - 210
slimjim100  slimjim100 - 208
M$ Security Bulletins
Currently there is a problem with headlines from this site
News @ SecurityFocus
·News: Twitter attacker had proper credentials
·News: PhotoDNA scans images for child abuse
·News: Conficker data highlights infected networks
·News: Popular apps need better patching, says report
·Brief: Google offers bounty on browser bugs
·Brief: Cyberattacks from U.S. "greatest concern"
·Brief: Microsoft patches as fraudsters target IE flaw
·Brief: Attack on IE 0-day refined by researchers
·News: Adobe pushes out Flash security fix
·News: Most consumers reuse banking passwords

read more...
Vuln Watch
·VulnWatch

read more...
alexa
Incidents
·About
·RSS
·Archive
·About
·RSS
·Archive
·About
·RSS
·Archive
·About

read more...



All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2008 Janek Vind "waraxe"

 Page Generation: 0.092 Seconds