Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
February 22, 2020
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 217
Members: 0
Total: 217
PacketStorm News
Currently there is a problem with headlines from this site
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index
Search found 27 matches
eXploit for PostNuke 0760RC2 CATID
PostForum: PostNuke   Posted: Thu Apr 06, 2006 5:52 pm   Subject: eXploit for PostNuke 0760RC2 CATID
cXIb8O3
 
Replies: 3
Views: 9475




http://securityreason.com/achievement_exploitalert/1

download from:
http://securityreason.com/expldownload/10/1

peace
Request for exploit: phpbb 2.0.19 with html off
PostForum: PhpBB   Posted: Sat Mar 25, 2006 8:37 pm   Subject: Request for exploit: phpbb 2.0.19 with html off
cXIb8O3
 
Replies: 3
Views: 4380




CSRF Attack
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Thu Mar 16, 2006 2:59 pm   Subject: phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
cXIb8O3
 
Replies: 19
Views: 36301





i quote from somewhere else


1. Basically all phpBB admin-side options do allow full HTML, including
javascript. That is the intended behaviour, as there are legitimate uses.

phpBB does howe ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Wed Mar 15, 2006 8:14 pm   Subject: phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
cXIb8O3
 
Replies: 19
Views: 36301




i think, better solusion is CSRF...

adv
http://securityreason.com/achievement_securityalert/31

and simple image exploit
http://securityreason.com/expldownload/10/6


i can public the next ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Tue Mar 14, 2006 10:24 pm   Subject: Re: hola
cXIb8O3
 
Replies: 19
Views: 36301





My question is this: can I use concatenation o something in order to change the word document?.


Try HTML without semicolons... I am not sure.. but i have tested in IE and works..

document=&a ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Tue Mar 14, 2006 10:22 pm   Subject: Re: hola
cXIb8O3
 
Replies: 19
Views: 36301





My question is this: can I use concatenation o something in order to change the word document?.


Try HTML without semicolons... I am not sure.. but i have tested in IE and works..

document=&a ...
New phpnuke security advisories will be out very soon!
PostForum: PhpNuke   Posted: Tue Feb 14, 2006 10:25 pm   Subject: Re: New phpnuke security advisories will be out very soon!
cXIb8O3
 
Replies: 10
Views: 10323




Yes, it's true. More Phpnuke holes revealed, so stay in touch! Wink

Yeah.. phpnuke Smile something critical? i hope.. i have something in phpnuke.. but i don't like phpnuke... Smile Postnuke is 100% ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Wed Feb 01, 2006 7:20 pm   Subject: phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
cXIb8O3
 
Replies: 19
Views: 36301




like in 2018..

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0063
Possible bug in phpnuke.org (PHP-Nuke 7.9)
PostForum: PhpNuke   Posted: Tue Dec 27, 2005 11:45 am   Subject: Re: cool!
cXIb8O3
 
Replies: 3
Views: 6994




use:
<IMG SRC="jav&#x09;ascript:alert('XSS');"

i think the preg_match only search for < ends with > if we use tags with out > all of them works properly:

& ...
phpBB 2.0.18 SQL Query problem
PostForum: PhpBB   Posted: Mon Nov 14, 2005 1:42 pm   Subject: phpBB 2.0.18 SQL Query problem
cXIb8O3
 
Replies: 5
Views: 5826




works works..

for example simple script.
http://securityreason.com/expldownload/10/4

you need have display_errors On if you wont see PHP errors
phpBB 2.0.18 SQL Query problem
PostForum: PhpBB   Posted: Sat Nov 12, 2005 1:37 pm   Subject: phpBB 2.0.18 SQL Query problem
cXIb8O3
 
Replies: 5
Views: 5826




http://securityreason.com/achievement_securityalert/26
Who has a Postnuke 0.760 Exploit????????`
PostForum: PostNuke   Posted: Fri Nov 04, 2005 10:22 pm   Subject: Who has a Postnuke 0.760 Exploit????????`
cXIb8O3
 
Replies: 1
Views: 6140




www.google.com => http://securityreason.com/achievement_securityalert/23
PHPNuke 7.8-7.9 Remote Directory Traversal
PostForum: PhpNuke   Posted: Wed Oct 19, 2005 9:10 pm   Subject: PHPNuke 7.8-7.9 Remote Directory Traversal
cXIb8O3
 
Replies: 0
Views: 4919




http://securityreason.com/achievement_securityalert/25 by sp3x
phpMyAdmin 2.6.4-pl1 local file inclusion
PostForum: All other software   Posted: Tue Oct 11, 2005 7:29 pm   Subject: phpMyAdmin 2.6.4-pl1 local file inclusion
cXIb8O3
 
Replies: 0
Views: 3040




http://securityreason.com/achievement_securityalert/24
GeSHi Local PHP file inclusion 1.0.7.2 (postnuke0.760)
PostForum: All other software   Posted: Fri Sep 23, 2005 5:14 am   Subject: GeSHi Local PHP file inclusion 1.0.7.2 (postnuke0.760)
cXIb8O3
 
Replies: 0
Views: 2856




GeSHi started as a mod for the phpBB forum system, to enable highlighting of more languages than the available (which was 0 Wink). However, it quickly spawned into an entire project on its own. But now ...
Page 1 of 2 Goto page 1, 2  Next
All times are GMT
  




Powered by phpBB 2001-2008 phpBB Group






All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2013 Janek Vind "waraxe"
Page Generation: 0.059 Seconds