Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
March 29, 2024
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 711
Members: 0
Total: 711
PacketStorm News
·301 Moved Permanently

read more...
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index
Search found 19 matches
Blind sql injection?
PostForum: Sql injection   Posted: Wed Dec 02, 2009 12:03 am   Subject: Blind sql injection?
bleh
 
Replies: 0
Views: 5241




Vulnerable url:
http://www.example.com/product.aspx?idC=132'

Result:
Server Error in '/' Application.
http://h.imagehost.org/t/0382/error.jpg

Hackable? Embarassed
Urgent....no sleep cos this one
PostForum: General discussion   Posted: Fri May 16, 2008 6:19 pm   Subject: Urgent....no sleep cos this one
bleh
 
Replies: 4
Views: 10164




So.. you want a program that every X minutes will beep?
Possible RFI?
PostForum: Remote file inclusion   Posted: Wed May 14, 2008 10:08 pm   Subject: Possible RFI?
bleh
 
Replies: 2
Views: 10194




Great! Very Happy
Possible RFI?
PostForum: Remote file inclusion   Posted: Wed May 14, 2008 8:57 pm   Subject: Possible RFI?
bleh
 
Replies: 2
Views: 10194




Im new to RFI, so excuse my noobness

Is this exploitable?


if (!defined('ROOT_DIR')) define('ROOT_DIR', realpath(dirname(__FILE__)).'/');

require_once ...
vBulletin 3.6.8 patch2 Admin panel upload shell
PostForum: vBulletin Board   Posted: Sat May 10, 2008 11:37 pm   Subject: vBulletin 3.6.8 patch2 Admin panel upload shell
bleh
 
Replies: 11
Views: 25611




does anyone got a working shell? Mine doesn't work Sad
How to "UPDATE"
PostForum: Sql injection   Posted: Thu Apr 24, 2008 7:01 pm   Subject: How to "UPDATE"
bleh
 
Replies: 5
Views: 13827




Look, what i wrote in my previous post:


find sql injection in UPDATE query, which deals with table you want to manipulate


So if you have sql injection in UPDATE query, which deals with polls ...
vbb hashs crack- please help
PostForum: All other hashes   Posted: Thu Apr 24, 2008 6:57 pm   Subject: vbb hashs crack- please help
bleh
 
Replies: 10
Views: 12216





Right now (april 2008) i don't know any fast methods for Vbulletin salted hashes cracking. Rainbow tables can't be used because of salting. Only options are wordlist method and bruteforce. And becau ...
vbb hashs crack- please help
PostForum: All other hashes   Posted: Tue Apr 22, 2008 12:37 am   Subject: vbb hashs crack- please help
bleh
 
Replies: 10
Views: 12216





Right now (april 2008) i don't know any fast methods for Vbulletin salted hashes cracking. Rainbow tables can't be used because of salting. Only options are wordlist method and bruteforce. And becau ...
How to "UPDATE"
PostForum: Sql injection   Posted: Mon Apr 21, 2008 11:31 pm   Subject: How to "UPDATE"
bleh
 
Replies: 5
Views: 13827




That was what I first thought, just wanted to hear the experts. So, after more digging, I've found out another vuln. It's in a poll script, so there's a high probability of using the update command.. ...
How to "UPDATE"
PostForum: Sql injection   Posted: Mon Apr 21, 2008 6:41 pm   Subject: How to "UPDATE"
bleh
 
Replies: 5
Views: 13827




Hey

I've got this vulnerable url:

http://www.example.com/main/index.php?type=journal&kid=NULL+UNION+ALL+SELECT+1,concat(uid),3,4,5,6,7,8,9,10,11,12,13,14+FROM+admin--


I want ...
Can you decode this?
PostForum: PHP script decode requests   Posted: Sun Apr 20, 2008 2:49 pm   Subject: Can you decode this?
bleh
 
Replies: 9
Views: 21664




its my footer.php and it gave me that...i dont know what to do with it
Question
Can you decode this?
PostForum: PHP script decode requests   Posted: Sat Apr 19, 2008 9:01 pm   Subject: Can you decode this?
bleh
 
Replies: 9
Views: 21664




Well... I decoded it with the same app and it gave me this:

<div class="clear"></div>



</div>

<div id="footer">

Communist design ...
Got access to db, but don't know what to do...
PostForum: vBulletin Board   Posted: Sat Apr 19, 2008 8:59 pm   Subject: Got access to db, but don't know what to do...
bleh
 
Replies: 7
Views: 11194





Use $_POST or $_COOKIE, because $_GET means, that webserver will log your payload ...
Oh crap, that's not good Very Happy
I've rewritten it. Thanks! Smile


$f = fopen("userprofile.php", & ...
Got access to db, but don't know what to do...
PostForum: vBulletin Board   Posted: Sat Apr 19, 2008 7:51 pm   Subject: Got access to db, but don't know what to do...
bleh
 
Replies: 7
Views: 11194




I have been running passwordpro for over 3 hours and nothing. I will just let it run. Meanwhile I'll do my hack in the middle of the night so there will be few people online Very Happy

I've tested this b ...
Can you decode this?
PostForum: PHP script decode requests   Posted: Sat Apr 19, 2008 7:29 pm   Subject: Can you decode this?
bleh
 
Replies: 9
Views: 21664




np Smile
Page 1 of 2 Goto page 1, 2  Next
All times are GMT
  




Powered by phpBB © 2001-2008 phpBB Group






Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2020 Janek Vind "waraxe"
Page Generation: 0.172 Seconds