Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
March 29, 2024
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 771
Members: 0
Total: 771
PacketStorm News
·301 Moved Permanently

read more...
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index
Search found 27 matches
eXploit for PostNuke 0760RC2 CATID
PostForum: PostNuke   Posted: Thu Apr 06, 2006 5:52 pm   Subject: eXploit for PostNuke 0760RC2 CATID
cXIb8O3
 
Replies: 3
Views: 14574




http://securityreason.com/achievement_exploitalert/1

download from:
http://securityreason.com/expldownload/10/1

peace
Request for exploit: phpbb 2.0.19 with html off
PostForum: PhpBB   Posted: Sat Mar 25, 2006 8:37 pm   Subject: Request for exploit: phpbb 2.0.19 with html off
cXIb8O3
 
Replies: 3
Views: 8113




CSRF Attack
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Thu Mar 16, 2006 2:59 pm   Subject: phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
cXIb8O3
 
Replies: 19
Views: 51085





i quote from somewhere else


1. Basically all phpBB admin-side options do allow full HTML, including
javascript. That is the intended behaviour, as there are legitimate uses.

phpBB does howe ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Wed Mar 15, 2006 8:14 pm   Subject: phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
cXIb8O3
 
Replies: 19
Views: 51085




i think, better solusion is CSRF...

adv
http://securityreason.com/achievement_securityalert/31

and simple image exploit
http://securityreason.com/expldownload/10/6


i can public the next ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Tue Mar 14, 2006 10:24 pm   Subject: Re: hola
cXIb8O3
 
Replies: 19
Views: 51085





My question is this: can I use concatenation o something in order to change the word document?.


Try HTML without semicolons... I am not sure.. but i have tested in IE and works..

document=&a ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Tue Mar 14, 2006 10:22 pm   Subject: Re: hola
cXIb8O3
 
Replies: 19
Views: 51085





My question is this: can I use concatenation o something in order to change the word document?.


Try HTML without semicolons... I am not sure.. but i have tested in IE and works..

document=&a ...
New phpnuke security advisories will be out very soon!
PostForum: PhpNuke   Posted: Tue Feb 14, 2006 10:25 pm   Subject: Re: New phpnuke security advisories will be out very soon!
cXIb8O3
 
Replies: 10
Views: 17836




Yes, it's true. More Phpnuke holes revealed, so stay in touch! Wink

Yeah.. phpnuke Smile something critical? i hope.. i have something in phpnuke.. but i don't like phpnuke... Smile Postnuke is 100% ...
phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Wed Feb 01, 2006 7:20 pm   Subject: phpBB <= 2.0.19 XSS Remote Cookie Disclosure Exploit
cXIb8O3
 
Replies: 19
Views: 51085




like in 2018..

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0063
Possible bug in phpnuke.org (PHP-Nuke 7.9)
PostForum: PhpNuke   Posted: Tue Dec 27, 2005 11:45 am   Subject: Re: cool!
cXIb8O3
 
Replies: 3
Views: 12388




use:
<IMG SRC="jav&#x09;ascript:alert('XSS');"

i think the preg_match only search for < ends with > if we use tags with out > all of them works properly:

& ...
phpBB 2.0.18 SQL Query problem
PostForum: PhpBB   Posted: Mon Nov 14, 2005 1:42 pm   Subject: phpBB 2.0.18 SQL Query problem
cXIb8O3
 
Replies: 5
Views: 10994




works works..

for example simple script.
http://securityreason.com/expldownload/10/4

you need have display_errors On if you wont see PHP errors
phpBB 2.0.18 SQL Query problem
PostForum: PhpBB   Posted: Sat Nov 12, 2005 1:37 pm   Subject: phpBB 2.0.18 SQL Query problem
cXIb8O3
 
Replies: 5
Views: 10994




http://securityreason.com/achievement_securityalert/26
Who has a Postnuke 0.760 Exploit????????`
PostForum: PostNuke   Posted: Fri Nov 04, 2005 10:22 pm   Subject: Who has a Postnuke 0.760 Exploit????????`
cXIb8O3
 
Replies: 1
Views: 10463




www.google.com => http://securityreason.com/achievement_securityalert/23
PHPNuke 7.8-7.9 Remote Directory Traversal
PostForum: PhpNuke   Posted: Wed Oct 19, 2005 9:10 pm   Subject: PHPNuke 7.8-7.9 Remote Directory Traversal
cXIb8O3
 
Replies: 0
Views: 8785




http://securityreason.com/achievement_securityalert/25 by sp3x
phpMyAdmin 2.6.4-pl1 local file inclusion
PostForum: All other software   Posted: Tue Oct 11, 2005 7:29 pm   Subject: phpMyAdmin 2.6.4-pl1 local file inclusion
cXIb8O3
 
Replies: 0
Views: 6396




http://securityreason.com/achievement_securityalert/24
GeSHi Local PHP file inclusion 1.0.7.2 (postnuke0.760)
PostForum: All other software   Posted: Fri Sep 23, 2005 5:14 am   Subject: GeSHi Local PHP file inclusion 1.0.7.2 (postnuke0.760)
cXIb8O3
 
Replies: 0
Views: 7031




GeSHi started as a mod for the phpBB forum system, to enable highlighting of more languages than the available (which was 0 Wink). However, it quickly spawned into an entire project on its own. But now ...
Page 1 of 2 Goto page 1, 2  Next
All times are GMT
  




Powered by phpBB © 2001-2008 phpBB Group






Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2020 Janek Vind "waraxe"
Page Generation: 0.151 Seconds